Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5
CVE-2025-49243
- EPSS 0.05%
- Veröffentlicht 06.06.2025 12:53:35
- Zuletzt bearbeitet 06.06.2025 14:06:58
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sevenspark ShiftNav – Responsive Mobile Menu allows Stored XSS. This issue affects ShiftNav – Responsive Mobile Menu: from n/a through 1.8.
5.4
CVE-2022-4627
- EPSS 0.2%
- Veröffentlicht 23.01.2023 15:15:15
- Zuletzt bearbeitet 02.04.2025 15:15:50
The ShiftNav WordPress plugin before 1.7.2 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...
1