CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5364 – WPGlobus – Multilingual Everything! <= 1.9.6 - Cross-Site Scripting via wpglobus_option[browser_redirect][redirect_by_language]
https://notcve.org/view.php?id=CVE-2018-5364
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[browser_redirect][redirect_by_language] parameter to wp-admin/options.php. El plugin WPGlobus en su versión 1.9.6 para WordPress tiene XSS mediante el parámetro wpglobus_option[browser_redirect][redirect_by_language] en wp-admin/options.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md https://wpvulndb.com/vulnerabilities/9003 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5365 – WPGlobus – Multilingual Everything! <= 1.9.6 - Cross-Site Request Forgery to Cross-Site Scripting via wpglobus_option[selector_wp_list_pages][show_selector]
https://notcve.org/view.php?id=CVE-2018-5365
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[selector_wp_list_pages][show_selector] parameter to wp-admin/options.php. El plugin WPGlobus en su versión 1.9.6 para WordPress tiene XSS mediante el parámetro wpglobus_option[selector_wp_list_pages][show_selector] en wp-admin/options.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md https://wpvulndb.com/vulnerabilities/9003 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5363 – WPGlobus – Multilingual Everything! <= 1.9.6 - Cross-Site Scripting via wpglobus_option[enabled_languages]
https://notcve.org/view.php?id=CVE-2018-5363
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[enabled_languages][en] or wpglobus_option[enabled_languages][fr] (or any other language) parameter to wp-admin/options.php. El plugin WPGlobus en su versión 1.9.6 para WordPress tiene XSS mediante los parámetros wpglobus_option[enabled_languages][en] o wpglobus_option[enabled_languages][fr] (o cualquier otro idioma) en wp-admin/options.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md https://wpvulndb.com/vulnerabilities/9003 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •