Photonicgnostic

Library Bookshelves

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2025-57964

  • EPSS 0.07%
  • Veröffentlicht 22.09.2025 18:24:41
  • Zuletzt bearbeitet 22.09.2025 21:22:33

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in photonicgnostic Library Bookshelves allows Stored XSS. This issue affects Library Bookshelves: from n/a through 5.11.

5.4

CVE-2024-13464

  • EPSS 0.08%
  • Veröffentlicht 18.02.2025 05:15:11
  • Zuletzt bearbeitet 24.02.2025 14:25:04

The Library Bookshelves plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bookshelf' shortcode in all versions up to, and including, 5.9 due to insufficient input sanitization and output escaping on user supplied att...

6.1

CVE-2024-11359

  • EPSS 1.91%
  • Veröffentlicht 12.12.2024 06:15:21
  • Zuletzt bearbeitet 12.12.2024 06:15:21

The Library Bookshelves plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 5.8. This makes it possible for unauthenticated...