CVE-2022-3690: Vulnerability in Popup Maker WordPress Plugin Before Version 1.16.11 - Stored Cross-Site Scripting by Contributors and Its Exploitation
The latest vulnerability to hit the headlines is CVE-2022-3690, affecting the widely used Popup Maker WordPress plugin. This weakness allows users with roles as low
CVE-2022-3753 - How Evaluate WordPress Plugin’s Setting Bugs Open the Door to Stored XSS (Even When _unfiltered_html_ Is Disabled!)
---
Introduction: What’s the Problem?
In September 2022, a new vulnerability was reported for the Evaluate WordPress plugin (up to version 1.). This bug
CVE-2022-3618 - How The Spacer WordPress Plugin Opened Doors for Hidden XSS Attacks
When it comes to the security of a WordPress website, plugins often become the weak link. One such plugin, Spacer, designed to help you add
CVE-2022-4068 - How Disabled Accounts and Poor Username Sanitization Opened Doors to XSS and Privilege Escalation
CVE-2022-4068 tells a story that's all too familiar in web security: a simple oversight blossoms into major vulnerabilities. The bug affected certain web
CVE-2022-3561 - Cross-site Scripting (XSS) Vulnerability in LibreNMS Explained
In October 2022, a critical security vulnerability was discovered in the popular network monitoring tool LibreNMS. If you are using LibreNMS version 22.10. or
Episode
00:00:00
00:00:00