Show filters
252 Total Results
Displaying 61-70 of 252
Sort by:
Attacker Value
Unknown
CVE-2015-9311
Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.6 for WordPress has reflected XSS.
0
Attacker Value
Unknown
CVE-2015-9315
Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.1 for WordPress has SQL injection.
0
Attacker Value
Unknown
CVE-2015-9313
Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.5 for WordPress has SQL injection related to an IMG element.
0
Attacker Value
Unknown
CVE-2015-9312
Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.5 for WordPress has XSS related to an IMG element.
0
Attacker Value
Unknown
CVE-2015-9314
Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.4 for WordPress has XSS related to the Referer header.
0
Attacker Value
Unknown
CVE-2019-8361
Disclosure Date: February 16, 2019 (last updated November 27, 2024)
PHP Scripts Mall Responsive Video News Script has XSS via the Search Bar. This might, for example, be leveraged for HTML injection or URL redirection.
0
Attacker Value
Unknown
CVE-2018-1000515
Disclosure Date: June 26, 2018 (last updated November 26, 2024)
ventrian News-Articles version NewsArticles.00.09.11 contains a XML External Entity (XXE) vulnerability in News-Articles/API/MetaWebLog/Handler.ashx.vb that can result in Attacker can read any file in the server or use smbrelay attack to access to server..
0
Attacker Value
Unknown
CVE-2018-0602
Disclosure Date: June 26, 2018 (last updated November 26, 2024)
Cross-site scripting vulnerability in Email Subscribers & Newsletters versions prior to 3.5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2018-6928
Disclosure Date: February 13, 2018 (last updated November 26, 2024)
PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term.
0
Attacker Value
Unknown
CVE-2018-5687
Disclosure Date: January 14, 2018 (last updated November 26, 2024)
NewsBee allows XSS via the Company Name field in the Settings under admin/admin.php.
0