Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown

CVE-2023-30453

Disclosure Date: June 16, 2023 (last updated October 08, 2023)
The Teamlead Reminder plugin through 2.6.5 for Jira allows persistent XSS via the message parameter.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-30134

Disclosure Date: December 26, 2022 (last updated October 08, 2023)
php-mod/curl (a wrapper of the PHP cURL extension) before 2.3.2 allows XSS via the post_file_path_upload.php key parameter and the POST data to post_multidimensional.php.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-24684

Disclosure Date: October 18, 2021 (last updated February 23, 2025)
The WordPress PDF Light Viewer Plugin WordPress plugin before 1.4.12 allows users with Author roles to execute arbitrary OS command on the server via OS Command Injection when invoking Ghostscript.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0