all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Stock Ticker <= 3.24.4 - Authenticated (Contributor+) Stored Cross-Site Scrip...

Add to bookmarks
June 29, 2024, 1:31 p.m. |

CVE | THREATINT - NEW cve.threatint.com

The Stock Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's stock_ticker shortcode in all versions up to, and including, 3.24.4 due to insufficient input san...

cross-site input plugin san scripting stock vulnerable wordpress

Visit resource

More from cve.threatint.com / CVE | THREATINT - NEW

GeoServer's Server Status shows sensitive environmental variables and Java pr... an hour ago | cve.threatint.com
data edit environmental geoserver +10
In JetBrains TeamCity before 2024.03.3 application token could be exposed in ... an hour ago | cve.threatint.com
application cloud ec2 exposed +6
In JetBrains TeamCity before 2024.03.3 private key could be exposed via testi... an hour ago | cve.threatint.com
app connection exposed github +7
Persistent Cross-site Scripting (XSS) in conf-web/settings REST endpointIn Sp... an hour ago | cve.threatint.com
admin browser cloud cloud platform +14
Persistent Cross-site Scripting (XSS) in Web BulletinIn Splunk Enterprise ver... an hour ago | cve.threatint.com
admin cloud cloud platform cross-site +12
Denial of Service through null pointer reference in “cluster/config” REST end... an hour ago | cve.threatint.com
attacker cloud cloud platform cluster +11
Denial of Service (DoS) on the datamodel/web REST endpointIn Splunk Enterpris... an hour ago | cve.threatint.com
admin cloud cloud platform denial of service +12
Remote Code Execution (RCE) through an external lookup due to “copybuckets.py... an hour ago | cve.threatint.com
admin code code execution enterprise +11
Low-privileged user could create experimental itemsIn Splunk Enterprise versi... an hour ago | cve.threatint.com
admin cloud cloud platform enterprise +7

Jobs in InfoSec / Cybersecurity

Find Talent

Data Loss Prevention Analyst 1

@ Advanced Energy | Quezon City, 00, PH, n/a
View on infosec-jobs.com

TC-CS-DPP MS Purview-Staff

@ EY | Bengaluru, KA, IN, 560048
View on infosec-jobs.com

Consultant CSIRT Confirmé H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Consultant Azure Cloud Sécurité CSPM H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Consultant en Protection des Données (Microsoft Purview) H/F (Paris)

@ EY | Paris La Défense, FR, 92037
View on infosec-jobs.com

Business Continuity Coordinator

@ Sumitomo Mitsui Banking Corporation | Brea, CA, US, 92821
View on infosec-jobs.com