what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Alex Thomas

WordPress Directorist 7.5.4 Insecure Direct Object Reference / Privilege Escalation

Posted Jun 8, 2023

Authored by Alex Thomas | Site wordfence.com

WordPress Directorist plugin versions 7.5.4 and below suffer from insecure direct object reference and privilege escalation vulnerabilities.

tags | exploit, vulnerability

advisories | CVE-2023-1888, CVE-2023-1889

SHA-256 | a15e7fd8c5bc9d777f92de320392c7f33636ed93ea834586dbd8b300720116dd

Download | Favorite | View

WordPress PowerPress 10.0 Cross Site Scripting

Posted Apr 20, 2023

Authored by Alex Thomas | Site wordfence.com

WordPress PowerPress plugin versions 10.0 and below suffer from a persistent cross site scripting vulnerability.

tags | advisory, xss

advisories | CVE-2023-1917

SHA-256 | 7a161242837503ce4ceb255fa764b0a71fe52922df023f91fdc9de0b31e1b8a1

Download | Favorite | View

WordPress Weaver Xtreme 5.0.7 / Weaver Show Posts 1.6 Cross Site Scripting

Posted Apr 18, 2023

Authored by Ramuel Gall, Alex Thomas | Site wordfence.com

WordPress Weaver Xtreme theme versions 5.0.7 and below and Weaver Show Posts plugin versions 1.6 and below suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2023-1403, CVE-2023-1404

SHA-256 | b0172ec77c6215204d9915dd71ebcb20dcc8714211ffcb31f41fff852f6ba6fd

Download | Favorite | View