CVE-2023-27626
- EPSS 0.1%
- Veröffentlicht 09.12.2024 13:15:25
- Zuletzt bearbeitet 09.12.2024 13:15:25
Missing Authorization vulnerability in Aleksandar Urošević Stock Ticker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stock Ticker: from n/a through 3.23.0.
CVE-2024-6363
- EPSS 0.23%
- Veröffentlicht 29.06.2024 07:15:03
- Zuletzt bearbeitet 21.11.2024 09:49:29
The Stock Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's stock_ticker shortcode in all versions up to, and including, 3.24.4 due to insufficient input sanitization and output escaping on user supplied attrib...
CVE-2023-51541
- EPSS 0.16%
- Veröffentlicht 29.12.2023 11:15:11
- Zuletzt bearbeitet 21.11.2024 08:38:20
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Urošević Stock Ticker allows Stored XSS.This issue affects Stock Ticker: from n/a through 3.23.4.
CVE-2022-45365
- EPSS 16.72%
- Veröffentlicht 14.12.2023 15:15:07
- Zuletzt bearbeitet 21.11.2024 07:29:07
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Urošević Stock Ticker allows Reflected XSS.This issue affects Stock Ticker: from n/a through 3.23.2.
CVE-2023-40208
- EPSS 4.82%
- Veröffentlicht 04.09.2023 11:15:41
- Zuletzt bearbeitet 21.11.2024 08:19:00
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Aleksandar Urošević Stock Ticker plugin <= 3.23.3 versions.