ByteOS Network

CNA

N/A

2Vulnerabilities found

CVSS Score-7.1||HIGH

EPSS-0.03% / 6.24%

7 Day CHG~0.00%

Published-16 Jan, 2025 | 20:07

Updated-17 Jan, 2025 | 19:09

WordPress Style Admin Plugin <= 1.4.3 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Benjamin Guy Style Admin allows Stored XSS.This issue affects Style Admin: from n/a through 1.4.3.

Cross-Site Request Forgery (CSRF)

CVSS Score-5.9||MEDIUM

EPSS-0.06% / 18.12%

7 Day CHG~0.00%

Published-16 Aug, 2023 | 09:38

Updated-25 Sep, 2024 | 15:02

WordPress Captcha Them All Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Benjamin Guy Captcha Them All plugin <= 1.3.3 versions.

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')