Show filters
252 Total Results
Displaying 61-70 of 252
Sort by:
Attacker Value
Unknown

CVE-2015-9311

Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.6 for WordPress has reflected XSS.
0
Attacker Value
Unknown

CVE-2015-9315

Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.1 for WordPress has SQL injection.
0
Attacker Value
Unknown

CVE-2015-9313

Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.5 for WordPress has SQL injection related to an IMG element.
0
Attacker Value
Unknown

CVE-2015-9312

Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.5 for WordPress has XSS related to an IMG element.
0
Attacker Value
Unknown

CVE-2015-9314

Disclosure Date: August 14, 2019 (last updated November 27, 2024)
The newstatpress plugin before 1.0.4 for WordPress has XSS related to the Referer header.
0
Attacker Value
Unknown

CVE-2019-8361

Disclosure Date: February 16, 2019 (last updated November 27, 2024)
PHP Scripts Mall Responsive Video News Script has XSS via the Search Bar. This might, for example, be leveraged for HTML injection or URL redirection.
0
Attacker Value
Unknown

CVE-2018-1000515

Disclosure Date: June 26, 2018 (last updated November 26, 2024)
ventrian News-Articles version NewsArticles.00.09.11 contains a XML External Entity (XXE) vulnerability in News-Articles/API/MetaWebLog/Handler.ashx.vb that can result in Attacker can read any file in the server or use smbrelay attack to access to server..
0
Attacker Value
Unknown

CVE-2018-0602

Disclosure Date: June 26, 2018 (last updated November 26, 2024)
Cross-site scripting vulnerability in Email Subscribers & Newsletters versions prior to 3.5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown

CVE-2018-6928

Disclosure Date: February 13, 2018 (last updated November 26, 2024)
PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term.
0
Attacker Value
Unknown

CVE-2018-5687

Disclosure Date: January 14, 2018 (last updated November 26, 2024)
NewsBee allows XSS via the Company Name field in the Settings under admin/admin.php.
0