Page 3 of 19 results (0.003 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

The events-manager plugin before 5.6 for WordPress has XSS. El complemento events-manager anterior a 5.6 para WordPress tiene XSS. • https://wordpress.org/plugins/events-manager/#developers https://wpvulndb.com/vulnerabilities/9761 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

The events-manager plugin before 5.5.7.1 for WordPress has DOM XSS. El complemento events-manager anterior a 5.5.7.1 para WordPress tiene DOM XSS. The events-manager plugin before 5.5.7.1 for WordPress has DOM XSS via the dbem_event_reapproved_email_body parameter. • https://wordpress.org/plugins/events-manager/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

The events-manager plugin before 5.5.7 for WordPress has multiple XSS issues. El complemento events-manager anterior a 5.5.7 para WordPress tiene múltiples problemas de XSS. • https://wordpress.org/plugins/events-manager/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

The events-manager plugin before 5.5.2 for WordPress has XSS in the booking form. El plugin events-manager versiones anteriores a 5.5.2 para WordPress, presenta una vulnerabilidad de tipo XSS en el formulario de reserva. The Events Manager plugin for WordPress is vulnerable to Cross-Site Scripting in versions up to, and including, 5.5.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts that execute in a victim's browser. • https://wordpress.org/plugins/events-manager/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field. El plugin events-manager versiones anteriores a 5.3.9 para WordPress, presenta una vulnerabilidad de tipo XSS en el campo search form. • https://wordpress.org/plugins/events-manager/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •