Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Webmaster-sourceGocodes

2 matches found

CVE
CVEadded 2019/09/20 3:8 p.m.217 views

CVE-2015-9398

The GoCodes WordPress plugin (<= 1.3.5) is affected by a SQL injection in wp-admin/tools.php gcid, per CVE-2015-9398. Connected sources also describe an Authenticated XSS and Blind SQL Injection in the same plugin (GoCodes

8.8CVSS9.1AI score0.01944EPSS
Web
CVE
CVEadded 2019/09/20 3:7 p.m.216 views

CVE-2015-9397

CVE-2015-9397 affects the GoCodes WordPress plugin (up to version 1.3.5). The vulnerability is an XSS via wp-admin/tools.php?deletegc in the GoCodes plugin, with authenticated-execution implications (Authenticated XSS per cited WPVulndb entry). Impact described as cross-site scripting; CVSS data ...

5.4CVSS5.6AI score0.01044EPSS
Web