CybrMonk’s Post

Memberlite Shortcodes <= 1.3.9 & Authenticated (Contributor+) Stored Cross&Si...The Memberlite Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's memberlite_accordion shortcode in all versions up to, and including, 1.3.9 due to insuff...https://lnkd.in/dabTW6tT

WP Simple Anchors Links <= 1.0.0 & Authenticated (Contributor+) Stored Cross&...The WP Simple Anchors Links plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpanchor shortcode in all versions up to, and including, 1.0.0 due to insufficient inp...https://lnkd.in/d87SptF3

BMLT Tabbed Map <= 1.1.8 & Authenticated (Contributor+) Stored Cross&Site Scr...The BMLT Tabbed Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bmlt_tabbed_map' shortcode in all versions up to, and including, 1.1.8 due to insufficient in...https://lnkd.in/dqFzw_aQ

WP&Members <= 3.4.9.5 & Authenticated (Contributor+) Stored Cross&Site Script...The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpmem_loginout shortcode in all versions up to, and including, 3.4.9.5 due to ins...https://lnkd.in/dAVp4H4a

Slotti Ajanvaraus <= 1.3.0 & Authenticated (Contributor+) Stored Cross&Site S...The Slotti Ajanvaraus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slotti' shortcode in all versions up to, and including, 1.3.0 due to insufficient input san...https://lnkd.in/dXAN8HRc

Rescue Shortcodes <= 2.8 & Authenticated (Contributor+) Stored Cross&Site Scr...The Rescue Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rescue_tab' shortcode in all versions up to, and including, 2.8 due to insufficient input s...https://lnkd.in/dptHbNEJ

Awesome buttons <= 1.0 & Authenticated (Contributor+) Stored Cross&Site Scrip...The Awesome buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's btn2 shortcode in all versions up to, and including, 1.0 due to insufficient input sanitizatio...https://lnkd.in/gkgzWimD

Folder Gallery <= 1.7.4 & Authenticated (Contributor+) Stored Cross&Site Scri...The Folder Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'foldergallery' shortcode in all versions up to, and including, 1.7.4 due to insufficient input...https://lnkd.in/d8q--ekR

WP Simple Anchors Links <= 1.0.0 & Authenticated (Contributor+) Stored Cross&...The WP Simple Anchors Links plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpanchor shortcode in all versions up to, and including, 1.0.0 due to insufficient inp... https://lnkd.in/dcpy57AA Simple, Anchors, Links, 1.0.0, Authenticated, Contributor, Stored, Cross-...

WP Ultimate Post Grid <= 3.9.3 & Authenticated (Contributor+) Stored Cross&Si...The WP Ultimate Post Grid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpupg-grid-with-filters shortcode in all versions up to, and including, 3.9.3 due to ins...https://lnkd.in/dcJu3hkw