Security
Headlines
HeadlinesLatestCVEs

Tag

#xss

CVE-2023-46312: WordPress Smart Online Order for Clover plugin <= 1.5.4 - Reflected Cross Site Scripting (XSS) vulnerability - Patchstack

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Zaytech Smart Online Order for Clover plugin <= 1.5.4 versions.

CVE
Open in Source
#xss#vulnerability#web#wordpress#auth
CVE-2023-40681: WordPress Groundhogg plugin <= 2.7.11.10 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Groundhogg Inc. Groundhogg plugin <= 2.7.11.10 versions.

CVE-2023-46313: WordPress Zotpress plugin <= 7.3.4 - Reflected Cross Site Scripting (XSS) vulnerability - Patchstack

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Katie Seaborn Zotpress plugin <= 7.3.4 versions.

GHSA-j59v-hh4p-q92m: Pimcore Cross-site Scripting vulnerability

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 11.1.0.

CVE-2023-5873

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 11.1.0.

CVE-2023-46210: WordPress WC Captcha plugin <= 1.4 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WebCource WC Captcha plugin <= 1.4 versions.

CVE-2023-46451: GitHub - sajaljat/CVE-2023-46451

Best Courier Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in the change username field.

GHSA-g5hp-328h-jj98: phpMyFAQ Cross-site Scripting vulnerability

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.1.

GHSA-prrv-r843-4p75: Cross-site Scripting (XSS) in thorsten/phpmyfaq

Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.2.

GHSA-j4vj-w5rj-8grw: phpMyFAQ Cross-site Scripting vulnerability

Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2.