Archives: Vulnerabilities
Input validation vulnerability in Full Screen (Page) Background Image Slideshow 1.1
The Full Screen Background Image Slideshow plugin for WordPress has a security issue that could allow hackers to insert harmful code into web pages. This can only happen on certain types of WordPress installations.
Input validation vulnerability in R Animated Icon Plugin 1.0
The R Animated Icon Plugin for WordPress has a security issue where malicious code can be inserted through SVG files. This can be done by attackers who have Author-level access or higher, and the code will run whenever someone accesses the SVG file.
Input validation vulnerability in 360 Photo Spheres 1.3
The 360 Photo Spheres feature on WordPress has a security issue that can be exploited by hackers. This is because the plugin does not properly filter and protect user input, allowing attackers with contributor access or higher to insert harmful scripts onto pages that will run when someone views them.
Input validation vulnerability in Elegant Visitor Counter 3.1
The Elegant Visitor Counter plugin for WordPress has a security issue where malicious code can be injected into pages, allowing attackers with high-level access to execute their scripts whenever a user accesses the compromised page. This only affects certain types of WordPress installations.
Input validation vulnerability in WOOEXIM – WooCommerce Export Import Plugin 5.0.0
The WOOEXIM plugin for WordPress, which helps with exporting and importing data on WooCommerce, has a security issue. This issue, known as Reflected Cross-Site Scripting, affects all versions of the plugin up to version 5.0.0. This means that malicious scripts can be injected into pages and executed if a user is tricked into clicking on a link.