Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
WpfrontWpfront Notification Bar

2 matches found

CVE
CVEadded 2024/01/25 2:32 a.m.60 views

CVE-2024-0625

CVE-2024-0625 describes a stored XSS in the WordPress plugin WPFront Notification Bar (multi-site && unfiltered_html scenarios) via the parameter wpfront-notification-bar-options[custom_class]. Affected: WPFront Notification Bar up to version 3.3.2. Root cause: insufficient input sanitization and...

4.8CVSS5.3AI score0.00403EPSS
CVE
CVEadded 2021/09/06 11:9 a.m.44 views

CVE-2021-24601

The CVE-2021-24601 entry concerns the WPFront Notification Bar WordPress plugin, affected versions prior to 2.1.0.08087. Root cause: improper sanitisation and escaping of plugin settings. Impact: authenticated users with high privileges can perform Cross-Site Scripting (XSS), even when unfiltered...

5.4CVSS5.1AI score0.00604EPSS