Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
text vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-3356
The Subscribers Text Counter WordPress plugin prior to 1.7.1 does not have CSRF check in place when updating its settings, which could allow malicious users to make a logged in admin change them via a CSRF attack, which also lead to Stored Cross-Site Scripting due to the lack of ...
Kreci Subscribers Text Counter
NA
CVE-2008-5487
Cross-site scripting (XSS) vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Turnkeyforms Text Link Sales
1 EDB exploit
NA
CVE-2008-5486
SQL injection vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Turnkeyforms Text Link Sales
1 EDB exploit
5.4
CVSSv3
CVE-2023-5745
The Reusable Text Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'text-blocks' shortcode in versions up to, and including, 1.5.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible ...
Halgatewood Reusable Text Blocks
NA
CVE-2008-3754
SQL injection vulnerability in trl.php in YourFreeWorld Stylish Text Ads Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Stylish Text Ads Script
1 EDB exploit
NA
CVE-2007-4078
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft Text Ads Enterprise allow remote malicious users to inject arbitrary web script or HTML via the (1) r parameter to (a) forgot_uid.php, the (2) query or (3) sk parameter to (b) search_results.php, or (4) the pageId ...
Alstrasoft Text Ads Enterprise 2.1
NA
CVE-2007-4079
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft SMS Text Messaging Enterprise allow remote malicious users to inject arbitrary web script or HTML via the (1) domain or (2) q parameter to (a) admin/membersearch.php, or (3) the userid parameter to (b) admin/editus...
Alstrasoft Sms Text Messaging Enterprise
2 EDB exploits
5.4
CVSSv3
CVE-2023-3387
The Lana Text to Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'lana_text_to_image' and 'lana_text_to_img' shortcode in versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on user su...
Lanacodes Lana Text To Image
NA
CVE-2006-2508
SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote malicious users to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector using advertise.php.
Yourfreeworld Stylish Text Ads Script
NA
CVE-2008-4885
SQL injection vulnerability in tr1.php in YourFreeWorld Scrolling Text Ads Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Scrolling Text Ads Script
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »