Team IT Security (TSEC) Nachrichtenportal Logo

🕵️ CVE-2022-4598 | Shoplazza LifeStyle 1.1 Announcement /admin/api/theme-edit/ Text/Mobile Text cross site scripting


Nachrichtenbereich: 🕵️ Sicherheitslücken
🔗 Quelle: vuldb.com

A vulnerability has been found in Shoplazza LifeStyle 1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/api/theme-edit/ of the component Announcement Handler. The manipulation of the argument Text/Mobile Text leads to cross site scripting. This vulnerability is known as CVE-2022-4598. The attack can be launched remotely. Furthermore, there is an exploit available. ...

Sharing is caring on Social Media

Reddit
Telegram
LinkedIn
Xing
Twitter
Whatsapp
Facebook
Flipboard

🕵️ Techotronic all-in-one-favicon Plugin 4.6 on WordPress Apple-Text/GIF-Text/ICO-Text/PNG-Text/JPG-Text Persistent cross site scripting


📈 36.32 Punkte
🕵️ Sicherheitslücken

⚠️ [webapps] Shoplazza 1.1 - Stored Cross-Site Scripting (XSS)


📈 35.77 Punkte
⚠️ PoC

⚠️ #0daytoday #Shoplazza 1.1 Cross Site Scripting Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]


📈 35.77 Punkte
⚠️ PoC

💾 Shoplazza 1.1 Cross Site Scripting


📈 35.77 Punkte
💾 IT Security Tools

🕵️ CVE-2024-13083 | PHPGurukul Land Record System 1.0 /admin/admin-profile.php Admin Name cross site scripting


📈 28.26 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-4490 | Elegant Themes Divi Theme, Extra Theme, Divi Page Builder Plugin cross site scripting


📈 27.95 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2019-17231 | OneTone Theme up to 3.0.6 on WordPress theme-functions.php Stored cross site scripting


📈 27.95 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2019-17535 | Gila CMS up to 1.11.4 Blog Theme/Mag Theme blog-list.php search cross site scripting


📈 27.95 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-45556 | MyBB 1.8.33 Theme Management Theme Name cross site scripting (GHSA-4xqm-3cm2-5xgf)


📈 27.95 Punkte
🕵️ Sicherheitslücken

🔧 Shoplazza Tutorial: How to Build Your Online Store


📈 27.72 Punkte
🔧 Programmierung

🕵️ [PRODSECBUG-2184] Stored cross-site scripting in the admin panel via the Terms & Conditions with Checkbox Text field in the admin panel


📈 26.54 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2012-2209 | Piwigo 2.3.3 admin.php theme cross site scripting (EDB-18782 / XFDB-75186)


📈 24.89 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-10479 | LinZhaoguan pb-cms up to 2.0.1 Theme Management Module /admin#themes cross site scripting (IAYHUP)


📈 24.89 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-6613 | Typecho 1.2.1 Logo /admin/options-theme.php cross site scripting


📈 24.89 Punkte
🕵️ Sicherheitslücken

🕵️ newspaper Theme up to 6.7.1 on WordPress admin-ajax.php td_ads[header] cross site scripting


📈 23.94 Punkte
🕵️ Sicherheitslücken

🕵️ DEF CON 26 Theme Announcement!


📈 23.43 Punkte
🕵️ Hacking

🔧 Gamedev.js Jam 2025 start and theme announcement!


📈 23.43 Punkte
🔧 Programmierung

🔧 Gamedev.js Jam 2024 start and theme announcement!


📈 23.43 Punkte
🔧 Programmierung

🕵️ DEF CON 23 Theme Announcement!


📈 23.43 Punkte
🕵️ Hacking

🕵️ Ogma CMS 0.4 Beta Theme Options Footer Text footer cross site scripting


📈 23.17 Punkte
🕵️ Sicherheitslücken

🕵️ JEECMS 9.3 admin/ api/admin/role/save cross site request forgery


📈 23.08 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-34428 | Harknell AWSOM News Announcement Plugin up to 1.6.0 on WordPress cross site scripting


📈 22.97 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-38685 | SubscriptionPro WP Announcement Plugin up to 2.0.8 on WordPress cross site scripting


📈 22.97 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-4090 | loating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any Plugin Setting cross site scripting


📈 22.97 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-10682 | mikewire_rocksolid Announcement & Notification Banner Plugin up to 3.11.7 on WordPress add_query_arg cross site scripting


📈 22.97 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-7133 | Sticky Floating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any Plugin Setting cross site scripting


📈 22.97 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-2476 | Dromara J2eeFAST up to 2.6.0 Announcement 系统工具/公告管理 cross site scripting (I6W380)


📈 22.97 Punkte
🕵️ Sicherheitslücken

🕵️ Baijia 101EIP System Announcement cross site scripting [CVE-2021-32540]


📈 22.97 Punkte
🕵️ Sicherheitslücken

⚠️ WordPress Project Theme 2.0.95 Cross Site Request Forgery / Cross Site Scripting


📈 22.67 Punkte
⚠️ PoC

⚠️ WordPress Project Theme 2.0.95 Cross Site Request Forgery / Cross Site Scripting


📈 22.67 Punkte
⚠️ PoC

🕵️ Swape Theme up to 1.2.0 on WordPress Access Control wp-admin/admin-ajax.php xmlPath privilege escalation


📈 22.3 Punkte
🕵️ Sicherheitslücken

📰 Lenovo's ThinkBook Wireless Dock empowers an increasingly mobile work lifestyle


📈 22.05 Punkte
📰 IT Nachrichten

🕵️ ASUSTOR ADM 3.1.1 System Announcement cross site scripting


📈 22.01 Punkte
🕵️ Sicherheitslücken

🕵️ WUZHI CMS 4.1.0 Extension Module announcement Stored cross site scripting


📈 22.01 Punkte
🕵️ Sicherheitslücken

🕵️ Invision Power Services IPS up to 4.1.19.2 Announcement index.php Parameter cross site scripting


📈 22.01 Punkte
🕵️ Sicherheitslücken