# web

CVE-2023-30494: WordPress ImageRecycle pdf & image compression plugin <= 3.1.10 - Cross Site Scripting (XSS) vulnerability - Patchstack

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ImageRecycle ImageRecycle pdf & image compression plugin <= 3.1.10 versions.

1 year ago

CVE-2023-39987: WordPress wSecure Lite plugin <= 2.5 - Cross Site Scripting (XSS) - Patchstack

#xss #vulnerability #web #wordpress #pdf #auth

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Ajay Lulia wSecure Lite plugin <= 2.5 versions.

1 year ago

CVE-2023-40206: WordPress WP 404 Auto Redirect to Similar Post plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability - Patchstack

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in hwk-fr WP 404 Auto Redirect to Similar Post plugin <= 1.0.3 versions.

1 year ago

CVE-2023-40208: WordPress Stock Ticker plugin <= 3.23.3 - Unauth. Reflected Cross-Site Scripting (XSS) vulnerability - Patchstack

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Aleksandar Uroševi? Stock Ticker plugin <= 3.23.3 versions.

1 year ago

ImpressionTech CMS 1.4 SQL Injection

ImpressionTech CMS version 1.4 suffers from a remote SQL injection vulnerability.

1 year ago

Packet Storm

CVE-2023-39162: WordPress User Email Verification for WooCommerce plugin <= 3.5.0 - Reflected Cross Site Scripting (XSS) vulnerability - Patchstack

#sql #vulnerability #web #windows #google #php #auth #firefox

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in XLPlugins User Email Verification for WooCommerce plugin <= 3.5.0 versions.

1 year ago