Akash Patil

4 exploits Active since Aug 2021
CVE-2021-24444 EXPLOITDB MEDIUM text WRITEUP
TaxoPress < 3.0.7.2 - Authenticated Stored Cross-Site Scripting in Taxonomy Description Field
The TaxoPress – Create and Manage Taxonomies, Tags, Categories WordPress plugin before 3.0.7.2 does not sanitise its Taxonomy description field, allowing high privilege users to set JavaScript payload in them even when the unfiltered_html capability is disallowed, leading to an authenticated Stored Cross-Site Scripting issue.
CVSS 4.8
EIP-2026-113887 EXPLOITDB text WRITEUP
WordPress Plugin Media-Tags 3.2.0.2 - Stored Cross-Site Scripting (XSS)
EIP-2026-113931 EXPLOITDB text WRITEUP
WordPress Plugin Ninja Tables 4.1.7 - Stored Cross-Site Scripting (XSS)
EIP-2026-109115 EXPLOITDB text WORKING POC
Library System in PHP 1.0 - 'publisher name' Stored Cross-Site Scripting (XSS)