|
1321
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The My IDX Home Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'homeasap-idx-search' shortcode in all versions up to, and including, 2.0.1 due to insufficie…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11889
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1322
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The IDer Login for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ider_login_button' shortcode in all versions up to, and including, 2.1 due to insuffic…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11888
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1323
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Wp photo text slider 50 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wp-photo-slider' shortcode in all versions up to, and including, 8.1 due to insufficien…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11884
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1324
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Connatix Video Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'cnx_script_code' shortcode in all versions up to, and including, 1.0.5 due to insufficient…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11883
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1325
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Stripe Donation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'stripe_donation' shortcode in all versions up to, and including, 1.2.5 due to insufficient inpu…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11879
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1326
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Cricket Live Score plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'cricket_score' shortcode in all versions up to, and including, 2.0.2 due to insufficient inp…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11877
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1327
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Kredeum NFTs, the easiest way to sell your NFTs directly on your WordPress site plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'kredeum_opensky' shortcode in a…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11876
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1328
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The glomex oEmbed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'glomex_integration' shortcode in all versions up to, and including, 0.9.1 due to insufficient inp…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11873
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1329
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Buk for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'buk' shortcode in all versions up to, and including, 1.0.7 due to insufficient input sanitiza…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11869
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1330
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Companion Portfolio – Responsive Portfolio Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'companion-portfolio' shortcode in all versions up to, and inc…
|
CWE-79
Cross-site Scripting
|
CVE-2024-11867
|
2024-12-14 14:15 |
2024-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
