# web

CVE-2023-45634: WordPress Copy or Move Comments plugin <= 5.0.4 - Reflected Cross Site Scripting (XSS) vulnerability - Patchstack

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Biztechc Copy or Move Comments plugin <= 5.0.4 versions.

2 years ago

CVE-2023-46557: Digging/TOTOLINK/X2000R/22/1.md at main · XYIYM/Digging

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMultiAPVLAN.

2 years ago

CVE-2023-46555: Digging/TOTOLINK/X2000R/3/1.md at main · XYIYM/Digging

#vulnerability #web #git

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formPortFw.

2 years ago

CVE-2023-46564: Digging/TOTOLINK/X2000R/6/1.md at main · XYIYM/Digging

#vulnerability #web #git

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formDMZ.

2 years ago

#vulnerability #web #git

CVE-2023-46554

TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formMapDel.

2 years ago

CVE-2023-45750: WordPress Nexter Extension plugin <= 2.0.3 - Reflected Cross Site Scripting (XSS) vulnerability - Patchstack

#web

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in POSIMYTH Nexter Extension plugin <= 2.0.3 versions.

2 years ago

CVE-2023-45747: WordPress WP Lightbox 2 plugin <= 3.0.6.5 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Syed Balkhi WP Lightbox 2 plugin <= 3.0.6.5 versions.

2 years ago

CVE-2023-45637: WordPress EventPrime plugin <= 3.1.5 - Reflected Cross Site Scripting (XSS) vulnerability - Patchstack

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in EventPrime EventPrime – Events Calendar, Bookings and Tickets plugin <= 3.1.5 versions.

2 years ago