CVE-2023-5000
- EPSS 0.2%
- Veröffentlicht 06.08.2024 02:15:35
- Zuletzt bearbeitet 06.08.2024 16:30:24
The Horizontal scrolling announcements plugin for WordPress is vulnerable to SQL Injection via the plugin's 'hsas-shortcode' shortcode in versions up to, and including, 2.4 due to insufficient escaping on the user supplied parameter and lack of suffi...
CVE-2023-4999
- EPSS 0.27%
- Veröffentlicht 20.10.2023 08:15:12
- Zuletzt bearbeitet 21.11.2024 08:36:25
The Horizontal scrolling announcement plugin for WordPress is vulnerable to SQL Injection via the plugin's [horizontal-scrolling] shortcode in versions up to, and including, 9.2 due to insufficient escaping on the user supplied parameter and lack of ...
CVE-2023-5001
- EPSS 0.08%
- Veröffentlicht 16.09.2023 05:15:45
- Zuletzt bearbeitet 21.11.2024 08:40:51
The Horizontal scrolling announcement for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'horizontal-scrolling' shortcode in versions up to, and including, 9.2 due to insufficient input sanitization and output escapin...