CVE-2023-5000
- EPSS 0.2%
- Veröffentlicht 06.08.2024 02:15:35
- Zuletzt bearbeitet 15.04.2026 00:35:42
The Horizontal scrolling announcements plugin for WordPress is vulnerable to SQL Injection via the plugin's 'hsas-shortcode' shortcode in versions up to, and including, 2.4 due to insufficient escaping on the user supplied parameter and lack of suffi...
CVE-2023-4999
- EPSS 0.27%
- Veröffentlicht 20.10.2023 08:15:12
- Zuletzt bearbeitet 08.04.2026 19:18:41
The Horizontal scrolling announcement plugin for WordPress is vulnerable to SQL Injection via the plugin's [horizontal-scrolling] shortcode in versions up to, and including, 9.2 due to insufficient escaping on the user supplied parameter and lack of ...
CVE-2023-5001
- EPSS 0.08%
- Veröffentlicht 16.09.2023 05:15:45
- Zuletzt bearbeitet 08.04.2026 19:18:41
The Horizontal scrolling announcement plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'horizontal-scrolling' shortcode in versions up to, and including, 9.2 due to insufficient input sanitization and output escaping on user supp...