Search Results (Refine Search)
- Keyword (text search): xss
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2015-9407 |
The xpinner-lite plugin through 2.2 for WordPress has xpinner-lite.php XSS. Published: September 20, 2019; 12:15:13 PM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9405 |
The wp-piwik plugin before 1.0.5 for WordPress has XSS. Published: September 20, 2019; 12:15:13 PM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9404 |
The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_keywords XSS. Published: September 20, 2019; 12:15:12 PM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9403 |
The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_location XSS. Published: September 20, 2019; 12:15:12 PM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9401 |
The websimon-tables plugin through 1.3.4 for WordPress has wp-admin/tools.php edit_style id XSS. Published: September 20, 2019; 12:15:12 PM -0400 |
V4.0:(not available) V3.1: 4.8 MEDIUM V2.0: 3.5 LOW |
CVE-2015-9397 |
The gocodes plugin through 1.3.5 for WordPress has wp-admin/tools.php deletegc XSS. Published: September 20, 2019; 12:15:12 PM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2015-9396 |
The auto-thickbox-plus plugin through 1.9 for WordPress has wp-content/plugins/auto-thickbox-plus/download.min.php?file= XSS. Published: September 20, 2019; 12:15:11 PM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9393 |
The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_desc parameter. Published: September 20, 2019; 12:15:11 PM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2015-9392 |
The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_name parameter. Published: September 20, 2019; 12:15:11 PM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2016-11013 |
The wp-listings plugin before 2.0.2 for WordPress has includes/views/single-listing.php XSS. Published: September 20, 2019; 11:15:13 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2016-11012 |
The sola-support-tickets plugin before 3.13 for WordPress has incorrect access control for /wp-admin with resultant XSS. Published: September 20, 2019; 11:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2016-11005 |
The instalinker plugin before 1.1.2 for WordPress has includes/instalinker-admin-preview.php?client_id= XSS. Published: September 20, 2019; 11:15:13 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2016-11001 |
The user-submitted-posts plugin before 20160215 for WordPress has XSS via the user-submitted-content field. Published: September 20, 2019; 11:15:13 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2016-10999 |
The Goodnews theme through 2016-02-28 for WordPress has XSS via the s parameter. Published: September 20, 2019; 11:15:13 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2016-10998 |
The ocim-mp3 plugin through 2016-03-07 for WordPress has wp-content/plugins/ocim-mp3/source/pages.php?id= XSS. Published: September 20, 2019; 11:15:12 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9391 |
The yawpp plugin through 1.2.2 for WordPress has XSS via the field1 parameter. Published: September 20, 2019; 11:15:12 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9389 |
The mtouch-quiz plugin before 3.1.3 for WordPress has XSS via a quiz name. Published: September 20, 2019; 11:15:12 AM -0400 |
V4.0:(not available) V3.1: 5.4 MEDIUM V2.0: 3.5 LOW |
CVE-2015-9388 |
The mtouch-quiz plugin before 3.1.3 for WordPress has wp-admin/edit.php CSRF with resultant XSS. Published: September 20, 2019; 11:15:11 AM -0400 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9386 |
The mtouch-quiz plugin before 3.1.3 for WordPress has XSS via the quiz parameter during a Quiz Manage operation. Published: September 20, 2019; 11:15:11 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-9385 |
The quotes-and-tips plugin before 1.20 for WordPress has XSS. Published: September 20, 2019; 11:15:11 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |