2 results (0.003 seconds)

CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-29092 – WordPress Permalink Manager Lite plugin <= 2.4.3 - Reflected Cross Site Scripting (XSS) vulnerability

https://notcve.org/view.php?id=CVE-2024-29092

15 Mar 2024 — Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Maciej Bis Permalink Manager Lite allows Reflected XSS.This issue affects Permalink Manager Lite: from n/a through 2.4.3. La vulnerabilidad de neutralización inadecuada de la entrada durante la generación de páginas web ('cross-site Scripting') en Maciej Bis Permalink Manager Lite permite Reflected XSS. Este problema afecta a Permalink Manager Lite: desde n/a hasta 2.4.3. The Permalink Manager Lite plugin f... • https://patchstack.com/database/vulnerability/permalink-manager/wordpress-permalink-manager-lite-plugin-2-4-3-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 1

CVE-2022-0201 – Permalink Manager < 2.2.15 - Reflected Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2022-0201

17 Jan 2022 — The Permalink Manager Lite WordPress plugin before 2.2.15 and Permalink Manager Pro WordPress plugin before 2.2.15 do not sanitise and escape query parameters before outputting them back in the debug page, leading to a Reflected Cross-Site Scripting issue El plugin Permalink Manager Lite de WordPress versiones anteriores a 2.2.15 y el plugin Permalink Manager Pro de WordPress versiones anteriores a 2.2.15, no sanean ni escapan los parámetros query antes de devolverlos a la página de depuración, conllevando ... • https://plugins.trac.wordpress.org/changeset/2656512 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •