Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2023-49824
- EPSS 0.06%
- Veröffentlicht 17.12.2023 11:15:07
- Zuletzt bearbeitet 21.11.2024 08:33:54
Cross-Site Request Forgery (CSRF) vulnerability in PixelYourSite Product Catalog Feed by PixelYourSite.This issue affects Product Catalog Feed by PixelYourSite: from n/a through 2.1.1.
6.1
CVE-2023-1804
- EPSS 0.17%
- Veröffentlicht 02.05.2023 08:15:10
- Zuletzt bearbeitet 30.01.2025 15:15:13
The Product Catalog Feed by PixelYourSite WordPress plugin before 2.1.1 does not sanitise and escape the edit parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege ...
6.1
CVE-2023-1805
- EPSS 0.14%
- Veröffentlicht 02.05.2023 08:15:10
- Zuletzt bearbeitet 30.01.2025 15:15:14
The Product Catalog Feed by PixelYourSite WordPress plugin before 2.1.1 does not sanitise and escape the page parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege ...
1