CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-5348 – Elements For Elementor <= 2.1 - Authenticated (Contributor+) Local File Inclusion via Multiple Widget Attributes
https://notcve.org/view.php?id=CVE-2024-5348
31 May 2024 — The Elements For Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.1 via the 'beforeafter_layout' attribute of the beforeafter widget, the 'eventsgrid_layout' attribute of the eventsgrid and list widgets, the 'marquee_layout' attribute of the marquee widget, the 'postgrid_layout' attribute of the postgrid widget, the 'woocart_layout' attribute of the woocart widget, and the 'woogrid_layout' attribute of the woogrid widget. This makes it possible for... • https://plugins.trac.wordpress.org/browser/nd-elements/trunk/widgets/beforeafter/index.php#L121 • CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-5220 – ND Shortcodes <= 7.5 - Authenticated (Author+) Stored Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2024-5220
24 May 2024 — The ND Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's upload feature in all versions up to, and including, 7.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. El complemento ND Shortcodes para WordPress es vulnerable a Cross-Site Scripting Almacenado a través de ... • https://plugins.trac.wordpress.org/browser/nd-shortcodes/tags/7.3/nd-shortcodes.php#L63 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-1382 – Restaurant Reservations <= 1.9 - Directory Traversal to Authenticated (Contributor+) Local File Inclusion
https://notcve.org/view.php?id=CVE-2024-1382
06 Mar 2024 — The Restaurant Reservations plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.9 via the nd_rst_layout attribute of the nd_rst_search shortcode. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrary PHP files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where an up... • https://plugins.trac.wordpress.org/browser/nd-restaurant-reservations/trunk/addons/visual/search/index.php#L49 • CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-4623 – ND Shortcodes < 7.0 - Contributor+ Stored XSS via Shortcodes
https://notcve.org/view.php?id=CVE-2022-4623
12 Jun 2023 — The ND Shortcodes WordPress plugin before 7.0 does not validate and escape numerous of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks The ND Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'nd_options_testimonial' shortcode in versions up to, and including, 6.9 due to insufficient input sanitization and out... • https://wpscan.com/vulnerability/1b3201da-f254-406f-9b4a-cd5025b6b03d • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 2CVE-2023-1273 – ND Shortcodes < 7.0 - Subscriber+ LFI
https://notcve.org/view.php?id=CVE-2023-1273
12 Jun 2023 — The ND Shortcodes WordPress plugin before 7.0 does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users such as subscriber to perform LFI attacks The ND Shortcodes plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 6.9 the plugin's shortcodes. This allows authenticated attackers with subscriber-level permissions, and above, to include and execute arbitrary files on the server, allow... • https://github.com/codeb0ss/CVE-2023-1273-PoC • CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-1155 – Cost Calculator <= 1.8 - Authenticated (Contributor+) Stored Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2023-1155
02 Mar 2023 — The Cost Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the nd_cc_meta_box_cc_price_icon parameter in versions up to, and including, 1.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. • https://wordpress.org/plugins/nd-projects/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0165 – Cost Calculator <= 1.8 - Contributor+ Stored XSS
https://notcve.org/view.php?id=CVE-2023-0165
13 Feb 2023 — The Cost Calculator WordPress plugin through 1.8 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. The Cost Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's nd_cost_calculator shortcode in versions up to, and including, 1.8 due to insufficient input sanitization and output ... • https://wpscan.com/vulnerability/f00b82f7-d8ad-4f6b-b791-81cc16b6336b • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-27859 – WordPress Travel Management plugin <= 2.0 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities
https://notcve.org/view.php?id=CVE-2022-27859
14 Jun 2022 — Multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in Nicdark d.o.o. Travel Management plugin <= 2.0 at WordPress. Múltiples vulnerabilidades de tipo Cross-Site Scripting (XSS) Autenticado (rol de colaborador o usuario superior) Almacenado en el plugin Nicdark d.o.o. Travel Management versiones anteriores a 2.0 incluyéndola, en WordPress • https://patchstack.com/database/vulnerability/nd-travel/wordpress-travel-management-plugin-2-0-multiple-authenticated-stored-cross-site-scripting-xss-vulnerabilities • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2022-29443 – WordPress Hotel Booking plugin <= 3.0 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities
https://notcve.org/view.php?id=CVE-2022-29443
26 May 2022 — Multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in Nicdark's Hotel Booking plugin <= 3.0 at WordPress. Múltiples vulnerabilidades de tipo Cross-Site Scripting (XSS) almacenado y autenticado (rol de colaborador o usuario superior) en el plugin Nicdark's Hotel Booking versiones 3.0 incluyéndola, en WordPress Multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in Nicdark's Hotel Booking plugin < 3.... • https://patchstack.com/database/vulnerability/nd-booking/wordpress-hotel-booking-plugin-3-0-multiple-authenticated-stored-cross-site-scripting-xss-vulnerabilities • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24821 – Cost Calculator < 1.6 - Contributor+ Stored Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2021-24821
01 Feb 2022 — The Cost Calculator WordPress plugin before 1.6 allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the Description fields of a Cost Calculator > Price Settings (which gets injected on the edit page as well as any page that embeds the calculator using the shortcode), as well as the Text Preview field of a Project (injected on the edit project page) El plugin Cost Calculator de WordPress versiones anteriores a 1.6, permite a usuarios con un rol tan bajo como el d... • https://wpscan.com/vulnerability/f0915b66-0b99-4aeb-9fba-759cafaeb0cb • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •