27788 results found, please narrow your search...
The Ultimate Member plugin for WordPress is vulnerable to directory traversal in versions up to, and including 2.5.0 due to insufficient input validation on the 'template' attribute used in shortcodes. This makes it possible for attackers with
The Salat Times WordPress plugin before 3.2.2 does not sanitize and escapes its settings, allowing high-privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
The Download Plugin WordPress plugin before 2.0.0 does not properly validate a user has the required privileges to access a backup's nonce identifier, which may allow any users with an account on the site (such as subscriber) to download a full copy of
The Find and Replace All WordPress plugin before 1.3 does not sanitize and escape some parameters from its setting page before outputting them back to the user, leading to a Reflected Cross-Site Scripting issue.
CartView.php in ChurchInfo 1.3.0 allows attackers to achieve remote code execution through insecure uploads. This requires authenticated access tot he ChurchInfo application. Once authenticated, a user can add names to their cart, and compose an email.
An issue was discovered in JIZHI CMS 1.9.4. There is a CSRF vulnerability that can add an admin account via index, /admin.php/Admin/adminadd.html
The WP User Frontend WordPress plugin before 3.5.29 uses a user supplied argument called urhidden in its registration form, which contains the role for the account to be created with, encrypted via wpuf_encryption(). This could allow an attacker having
The Five Star Restaurant Reservations WordPress plugin before 2.4.12 does not have authorisation when changing whether a payment was successful or failed, allowing unauthenticated users to change the payment status of arbitrary bookings. Furthermore, due
The My wpdb WordPress plugin before 2.5 is missing CSRF check when running SQL queries, which could allow attacker to make a logged in admin run arbitrary SQL query via a CSRF attack
The WP-Polls WordPress plugin before 2.76.0 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass IP-based limitations to vote in certain situations.
Multiple Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerabilities in Quiz And Survey Master plugin <= 7.3.4 on WordPress.
A vulnerability, which was classified as problematic, was found in phpservermon. This affects the function generatePasswordResetToken of the file src/psm/Service/User.php. The manipulation leads to use of predictable algorithm in random number generator.
A vulnerability, which was classified as problematic, was found in phpservermon. Affected is the function setUserLoggedIn of the file src/psm/Service/User.php. The manipulation leads to use of predictable algorithm in random number generator. The exploit
The reSmush.it : the only free Image Optimizer & compress plugin WordPress plugin before 0.4.4 does not perform CSRF checks for any of its AJAX actions, allowing an attackers to trick logged in users to perform various actions on their behalf on t
The reSmush.it : the only free Image Optimizer & compress plugin WordPress plugin before 0.4.4 lacks authorization in various AJAX actions, allowing any logged-in users, such as subscribers to call them.
The Newspaper WordPress theme before 12 does not sanitise a parameter before outputting it back in an HTML attribute via an AJAX action, leading to a Reflected Cross-Site Scripting
The Gallery Plugin for WordPress plugin before 126.96.36.199 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers
Multiple Insecure Direct Object References (IDOR) vulnerabilities in ExpressTech Quiz And Survey Master plugin <= 7.3.6 on WordPress.
CVE-2022-3733 | SourceCodester Web-Based Student Clearance System Admin/edit-admin.php id sql injection
Hospital Management System v 4.0 is vulnerable to SQL Injection via file:hospital/hms/admin/view-patient.php.
Hospital Management System v 4.0 is vulnerable to Cross Site Scripting (XSS) via /hospital/hms/admin/patient-search.php.
Employee Record Management System v 1.2 is vulnerable to Cross Site Scripting (XSS) via editempprofile.php.
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Themepoints Testimonials plugin <= 2.6 on WordPress.
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 on WordPress.
Auth. (editor+) Reflected Cross-Site Scripting (XSS) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 on WordPress.
CVE-2022-41996 | ThemeFusion Avada Premium Theme up to 7.8.1 on WordPress Plugin Installation cross-site request forgery
CVE-2022-25849 | joyqi hyper-down Markdown Parser href cross site scripting (SNYK-PHP-JOYQIHYPERDOWN-2953544)
CVE-2022-3673 | SourceCodester Sanitization Management System 1.0 Master.php message cross site scripting
CVE-2022-3672 | SourceCodester Sanitization Management System 1.0 SystemSettings.php name/shortname cross site scripting
CVE-2022-42206 | PHPGurukul Hospital Management System in PHP 4.0 doctor/view-patient.php cross site scripting
CVE-2022-42205 | PHPGurukul Hospital Management System in PHP 4.0 add-patient.php cross site scripting
A flaw was found in Wordpress 5.1. "X-Forwarded-For" is a HTTP header used to carry the client's original IP address. However, because these headers may very well be added by the client to the requests, if the systems/devices use IP addr
CVE-2022-42142 | Online Tours & Travels Management System 1.0 update_settings.php Privilege Escalation
CVE-2022-3579 | SourceCodester Cashier Queuing System 1.0 Login Page /queuing/login.php username/password sql injection
CVE-2022-3126 | Frontend File Manager Plugin Plugin up to 21.3 on WordPress cross-site request forgery
CVE-2022-35698 | Adobe Commerce/Magento Open Source up to 2.4.4-p1/2.4.5 cross site scripting (APSB22-48)
CVE-2022-3505 | SourceCodester Sanitization Management System /php-sms/admin/ page cross site scripting
CVE-2022-3496 | SourceCodester Human Resource Management System 1.0 Admin Panel employeeadd.php access control
CVE-2022-3495 | SourceCodester Simple Online Public Access Catalog 1.0 Admin Login Actions.php username/password sql injection
CVE-2021-36915 | Cozmoslabs Profile Builder Plugin up to 3.6.0 on WordPress JSON File cross-site request forgery
CVE-2021-36899 | Gabe Livan Page Speed Booster Plugin up to 188.8.131.52 on WordPress cross site scripting