CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5361 – WPGlobus – Multilingual Everything! <= 1.9.6 - Cross-Site Request Forgery
https://notcve.org/view.php?id=CVE-2018-5361
The WPGlobus plugin 1.9.6 for WordPress has CSRF via wp-admin/options.php. El plugin WPGlobus en su versión 1.9.6 para WordPress tiene CSRF mediante wp-admin/options.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md https://wpvulndb.com/vulnerabilities/9003 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5362 – WPGlobus – Multilingual Everything! <= 1.9.6 - Cross-Site Scripting via wpglobus_option[post_type][page]
https://notcve.org/view.php?id=CVE-2018-5362
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[post_type][page] parameter to wp-admin/options.php. El plugin WPGlobus en su versión 1.9.6 para WordPress tiene XSS mediante el parámetro wpglobus_option[post_type][page] en wp-admin/options.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md https://wpvulndb.com/vulnerabilities/9003 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5366 – WPGlobus – Multilingual Everything! <= 1.9.6 - Cross-Site Scripting via wpglobus_option[more_languages]
https://notcve.org/view.php?id=CVE-2018-5366
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[more_languages] parameter to wp-admin/options.php. El plugin WPGlobus en su versión 1.9.6 para WordPress tiene XSS mediante el parámetro wpglobus_option[more_languages] en wp-admin/options.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md https://wpvulndb.com/vulnerabilities/9003 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5367 – WPGlobus – Multilingual Everything! <= 1.9.6 - Cross-Site Scripting via wpglobus_option[post_type][post]
https://notcve.org/view.php?id=CVE-2018-5367
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[post_type][post] parameter to wp-admin/options.php. El plugin WPGlobus en su versión 1.9.6 para WordPress tiene XSS mediante el parámetro wpglobus_option[post_type][post] en wp-admin/options.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md https://wpvulndb.com/vulnerabilities/9003 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5364 – WPGlobus – Multilingual Everything! <= 1.9.6 - Cross-Site Scripting via wpglobus_option[browser_redirect][redirect_by_language]
https://notcve.org/view.php?id=CVE-2018-5364
The WPGlobus plugin 1.9.6 for WordPress has XSS via the wpglobus_option[browser_redirect][redirect_by_language] parameter to wp-admin/options.php. El plugin WPGlobus en su versión 1.9.6 para WordPress tiene XSS mediante el parámetro wpglobus_option[browser_redirect][redirect_by_language] en wp-admin/options.php. • https://github.com/d4wner/Vulnerabilities-Report/blob/master/wpglobus.md https://wpvulndb.com/vulnerabilities/9003 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •