CVE - API Security Blog

CVE-2023-34011

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in ShopConstruct plugin Read More ...

September 01, 2023

CVE-2023-37893

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Chop-Chop Coming Soon Chop Chop plugin Read More ...

September 01, 2023

CVE-2023-37994

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Artem Abramovich Art Decoration Shortcode plugin Read More ...

September 01, 2023

CVE-2023-37986

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in miniOrange YourMembership Single Sign On â YM SSO Login plugin Read More ...

September 01, 2023

CVE-2023-37997

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Dharmesh Patel Post List With Featured Image plugin Read More ...

September 01, 2023

CVE-2023-39703

A cross site scripting (XSS) vulnerability in the Markdown Editor component of Typora v1.6.7 allows attackers to execute arbitrary code via uploading a crafted Markdown file.Read More ...

September 01, 2023

CVE-2023-37829

A cross-site scripting (XSS) vulnerability in General Solutions Steiner GmbH CASE 3 Taskmanagement V 3.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into t ...

September 01, 2023

CVE-2023-37827

A cross-site scripting (XSS) vulnerability in General Solutions Steiner GmbH CASE 3 Taskmanagement V 3.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into t ...

September 01, 2023