Published CVEs and Written Exploits

CVEs

CVE-2023-7194

Reflected XSS

Platform: Wordpress Theme

Software Link: https://mageewp.com/wordpress-themes.html

Fixed version: No known fix

References:

https://wpscan.com/vulnerability/e20292af-939a-4cb1-91e4-5ff6aa0c7fbe/

CVE-2022-2535

Unauthenticated Arbitrary Post Title Disclosure

Platform: Wordpress Plugin

Software Link: https://wordpress.org/plugins/searchwp-live-ajax-search/

Fixed version: 1.6.2

References:

https://wpscan.com/vulnerability/0e13c375-044c-4c2e-ab8e-48cb89d90d02/

CVE-2021-25079

Multiple Reflected XSS in contact form entries plugin

Platform: Wordpress Plugin

Software Link: https://wordpress.org/plugins/contact-form-entries/

Fixed version: 1.1.6

References:

CVE-2021-25080

Contact Form Entries < 1.1.7 – Unauthenticated Stored Cross-Site Scripting

Platform: Wordpress Plugin

Software Link: https://wordpress.org/plugins/contact-form-entries/

Fixed version: 1.1.7

References:

https://wpscan.com/vulnerability/acd3d98a-aab8-49be-b77e-e8c6ede171ac

Exploits

WordPress Core 5.2.2 – ‘post previews’ XSS

WordPress before 5.2.3 allows XSS in post previews by authenticated users.

Type: WebApps

Platform: PHP

WordPress Epsilon Framework Multiple Themes – Unauthenticated Function Injection

Fifteen WordPress themes use a vulnerable version of epsilon-framework that vulnerable to a critical unauthenticated function injection vulnerability, due to the lack of capability and CSRF nonce checks in AJAX actions.

Type: WebApps

Platform: PHP

Jenkins 2.235.3 – ‘Description’ Stored XSS

Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the project naming strategy description that is displayed on item creation.
This results in a stored cross-site scripting (XSS) vulnerability exploitable by users with Overall/Manage permission.
Jenkins 2.252, LTS 2.235.4 escapes the project naming strategy description.

Type: WebApps

Platform: Java

Jenkins 2.235.3 – ‘tooltip’ Stored Cross-Site Scripting

Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the tooltip content of help icons.
Tooltip values can be contributed by plugins, some of which use user-specified values.
This results in a stored cross-site scripting (XSS) vulnerability.
Jenkins 2.252, LTS 2.235.4 escapes the tooltip content of help icons.

Type: WebApps

Platform: Java

WordPress Yet Another Stars Rating PHP Object Injection

This Metasploit module affects WordPress Yet Another Stars Rating plugin versions prior to 1.8.7 and demonstrates a PHP object injection vulnerability.

Type: WebApps

Platform: PHP

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.