‼️CVE-2023-51396‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Brizy.Io Brizy Page Builder allows Stored XSS.This issue affects Brizy Page Builder from na through 2.4.29. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-51397‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Brainstorm Force WP Remote Site Search allows Stored XSS.This issue affects WP Remote Site Search from na through 1.0.4. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-51399‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in WPFactory Back Button Widget allows Stored XSS.This issue affects Back Button Widget from na through 1.6.3. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-51541‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Aleksandar Uroevi? Stock Ticker allows Stored XSS.This issue affects Stock Ticker from na through 3.23.4. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-52135‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WS Form WS Form LITE Drag Drop Contact Form Builder for WordPress.This issue affects WS Form LITE Drag Drop Contact Form Builder for WordPress from na through 1.9.170. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-41813‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Pandora FMS on all allows CrossSite Scripting XSS. Allows you to edit the Web Console user notification options. This issue affects Pandora FMS from 700 through 774.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-41814‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Pandora FMS on all allows CrossSite Scripting XSS. Through an HTML payload iframe tag it is possible to carry out XSS attacks when the user receiving the messages opens their notifications. This issue affects Pandora FMS from 700 through 774.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-41815‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Pandora FMS on all allows CrossSite Scripting XSS. Malicious code could be executed in the File Manager section. This issue affects Pandora FMS from 700 through 774.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-44088‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Pandora FMS on all allows SQL Injection. Arbitrary SQL queries were allowed to be executed using any account with low privileges. This issue affects Pandora FMS from 700 through 774.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-44089‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Pandora FMS on all allows CrossSite Scripting XSS. It was possible to execute malicious JS code on Visual Consoles. This issue affects Pandora FMS from 700 through 774.📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50837‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WebFactory Ltd Login Lockdown Protect Login Form.This issue affects Login Lockdown Protect Login Form from na through 2.06. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50879‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Automattic WordPress.Com Editing Toolkit allows Stored XSS.This issue affects WordPress.Com Editing Toolkit from na through 3.78784. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50880‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in The BuddyPress Community BuddyPress allows Stored XSS.This issue affects BuddyPress from na through 11.3.1. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50881‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in AAM Advanced Access Manager Restricted Content, Users Roles, Enhanced Security and More allows Stored XSS.This issue affects Advanced Access Manager Restricted Content, Users Roles, Enhanced Security and More from na through 6.9.15. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50889‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in The Beaver Builder Team Beaver Builder WordPress Page Builder allows Stored XSS.This issue affects Beaver Builder WordPress Page Builder from na through 2.7.2. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50891‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in Zoho Forms Form plugin for WordPress Zoho Forms allows Stored XSS.This issue affects Form plugin for WordPress Zoho Forms from na through 3.0.1. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50892‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in CodexThemes TheGem Creative MultiPurpose WooCommerce WordPress Theme allows Reflected XSS.This issue affects TheGem Creative MultiPurpose WooCommerce WordPress Theme from na through 5.9.1. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50893‼️
📖 Read more
Via "National Vulnerability Database"
Improper Neutralization of Input During Web Page Generation 'Crosssite Scripting' vulnerability in UpSolution Impreza WordPress Website and WooCommerce Builder allows Reflected XSS.This issue affects Impreza WordPress Website and WooCommerce Builder from na through 8.17.4. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-51402‼️
📖 Read more
Via "National Vulnerability Database"
CrossSite Request Forgery CSRF vulnerability in Brain Storm Force Ultimate Addons for WPBakery Page Builder.This issue affects Ultimate Addons for WPBakery Page Builder from na through 3.19.17. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-7078‼️
📖 Read more
Via "National Vulnerability Database"
Sending specially crafted HTTP requests to Miniflare's server could result in arbitrary HTTP and WebSocket requests being sent from the server. If Miniflare was configured to listen on external network interfaces as was the default in wrangler until 3.19.0, an attacker on the local network could access other local servers. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-7079‼️
📖 Read more
Via "National Vulnerability Database"
Sending specially crafted HTTP requests and inspector messages to Wrangler's dev server could result in any file on the user's computer being accessible over the local network. An attacker that could trick any user on the local network into opening a malicious website could also read any file. 📖 Read more
Via "National Vulnerability Database"