CVE-2021-36830 Stored XSS vulnerability in Comment Guestbook plugin = 0.8.0 at WordPress.
You need to update Comment Guestbook or remove it from your website at once. The latest version is 0.8.5 which was released on
CVE-2021-45843 An XSS vulnerability in glFusion CMS v1.7.9 affects the title request parameter and is encapsulated in double quotation marks.
XSS vulnerabilities can be exploited to steal data, create links for redirecting to malicious URLs, or inject arbitrary web script into the application's
CVE-2020-15337 The ZyXel CloudCNM SecuManager 3.1.0 and 3.1.1 has a "Use of GET Request Method With Sensitive Query Strings" issue.
This might cause an XSS (Cross-Site Scripting) vulnerability in your application. To protect your application from XSS vulnerabilities, you need to filter the received data
CVE-2022-37346 The Product Image Bulk Upload Plugin has an insufficient verification vulnerability when uploading files.
There is currently no known exploit for this issue. However, we recommend updating to version 4.1.0 or higher as soon as possible. Vulnerable
CVE-2022-40352 The tour & travels management system v1.0 had a SQL injection vulnerability through the id parameter.
A person could exploit this vulnerability to execute arbitrary SQL commands with system privileges or cause a denial of service. We assume no risk of
Episode
00:00:00
00:00:00