| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-4757 | List Pages Shortcode < 1.7.6 - Contributor+ Stored XSS via Shortcode | Unknown | List Pages Shortcode | 中危 | - | 2023-02-27 15:24:30 | Deep Dive |
| CVE-2023-24529 | BSP 跨站脚本漏洞 | SAP | NetWeaver AS ABAP (Business Server Pages application) | Medium | 6.1 | 2023-02-14 03:19:23 | Deep Dive |
| CVE-2022-4488 | Widgets on Pages < 1.8.0 - Contributor+ Stored XSS | Unknown | Widgets on Pages | 中危 | - | 2023-02-13 14:32:29 | Deep Dive |
| CVE-2022-4776 | CC Child Pages < 1.43 - Contributor+ Stored XSS via Shortcode | Unknown | CC Child Pages | 中危 | - | 2023-01-30 20:31:30 | Deep Dive |
| CVE-2022-4483 | Insert Pages < 3.7.5 - Contributor+ Stored XSS | Unknown | Insert Pages | 中危 | - | 2023-01-16 15:38:04 | Deep Dive |
| CVE-2022-2516 | Visual Composer Website Builder <= 45.0 - Authenticated Stored Cross-Site Scripting via 'Title' | visualcomposer | Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages | Medium | 6.4 | 2022-09-06 17:18:58 | Deep Dive |
| CVE-2022-2430 | Visual Composer Website Builder <= 45.0 - Authenticated Stored Cross-Site Scripting via 'Text Block' | visualcomposer | Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages | Medium | 6.4 | 2022-09-06 17:18:56 | Deep Dive |
| CVE-2022-36341 | WordPress AS – Create Pinterest Pinboard Pages plugin <= 1.0 - Authenticated plugin settings change leading to Stored Cross-Site Scripting (XSS) vulnerability | Akash soni | AS – Create Pinterest Pinboard Pages (WordPress plugin) | Medium | 5.4 | 2022-08-23 15:47:18 | Deep Dive |
| CVE-2022-1990 | Nested Pages < 3.1.21 - Admin+ Stored Cross Site Scripting | Unknown | Nested Pages | 中危 | - | 2022-06-27 08:59:11 | Deep Dive |
| CVE-2022-1027 | Page Restriction WordPress < 1.2.7 - Admin+ Stored Cross-Site Scripting | Unknown | Page Restriction WordPress (WP) – Protect WP Pages/Post | 中危 | - | 2022-04-25 15:51:14 | Deep Dive |
| CVE-2022-1121 | GitLab 输入验证错误漏洞 | GitLab | GitLab Pages | Medium | 5.3 | 2022-04-04 19:46:11 | Deep Dive |
| CVE-2021-23209 | WordPress AMP for WP – Accelerated Mobile Pages plugin <= 1.0.77.32 - Multiple Auth. Stored Cross-Site Scripting (XSS) vulnerabilities | Ahmed Kaludi, Mohammed Kaludi | AMP for WP – Accelerated Mobile Pages (WordPress plugin) | Medium | 4.8 | 2022-03-18 18:00:25 | Deep Dive |
| CVE-2021-23150 | WordPress AMP for WP – Accelerated Mobile Pages plugin <= 1.0.77.31 - Auth. Stored Cross-Site Scripting (XSS) vulnerability | Ahmed Kaludi, Mohammed Kaludi | AMP for WP – Accelerated Mobile Pages (WordPress plugin) | Medium | 4.8 | 2022-03-18 18:00:24 | Deep Dive |
| CVE-2022-24718 | Path Traversal in ssr-pages | Finastra | ssr-pages | High | 7.6 | 2022-03-01 18:45:13 | Deep Dive |
| CVE-2022-24717 | Cross Site Scripting (XSS) in ssr-pages | Finastra | ssr-pages | Medium | 6.1 | 2022-03-01 18:40:11 | Deep Dive |
| CVE-2022-0232 | User Registration, Login & Landing Pages – LeadMagic <= 1.2.7 Admin+ Stored Cross-Site Scripting | User Registration, Login & Landing Pages – LeadMagic | User Registration, Login & Landing Pages – LeadMagic | Medium | 4.8 | 2022-01-18 16:52:25 | Deep Dive |
| CVE-2021-25067 | Landing Page Builder < 1.4.9.6 - Authenticated Reflected Cross-Site Scripting (XSS) | Unknown | Landing Page Builder – Lead Page – Optin Page – Squeeze Page – WordPress Landing Pages | 中危 | - | 2022-01-17 13:00:41 | Deep Dive |
| CVE-2021-24851 | Insert Pages < 3.7.0 - Contributor+ Arbitrary Posts/Pages Access | Unknown | Insert Pages | 中危 | - | 2021-11-17 10:15:54 | Deep Dive |
| CVE-2021-24850 | Insert Pages < 3.7.0 - Contributor+ Stored Cross-Site Scripting | Unknown | Insert Pages | 中危 | - | 2021-11-17 10:15:52 | Deep Dive |
| CVE-2021-38342 | Nested Pages <= 3.1.15 Cross-Site Request Forgery to Arbitrary Post Deletion and Modification | Kyle Phillips | Nested Pages | High | 8.1 | 2021-08-30 18:05:17 | Deep Dive |