Akash Rajendra Patil - Security Researcher - Exploit Intelligence Platform

CVE-2021-24444 EXPLOITDB MEDIUM text WRITEUP

Taxopress < 3.0.7.2 - XSS

The TaxoPress – Create and Manage Taxonomies, Tags, Categories WordPress plugin before 3.0.7.2 does not sanitise its Taxonomy description field, allowing high privilege users to set JavaScript payload in them even when the unfiltered_html capability is disallowed, leading to an authenticated Stored Cross-Site Scripting issue.

CVSS 4.8

View Code

EIP-2026-113887 EXPLOITDB text WRITEUP

WordPress Plugin Media-Tags 3.2.0.2 - Stored Cross-Site Scripting (XSS)

View Code

EIP-2026-113931 EXPLOITDB text WRITEUP

WordPress Plugin Ninja Tables 4.1.7 - Stored Cross-Site Scripting (XSS)

View Code

EIP-2026-109115 EXPLOITDB text WORKING POC

Library System in PHP 1.0 - 'publisher name' Stored Cross-Site Scripting (XSS)

View Code