En_dust

2 exploits Active since Nov 2018
CVE-2018-19564 EXPLOITDB MEDIUM text WORKING POC
Easy Testimonials 3.2 - Stored Cross-Site Scripting via _ikcf_client, _ikcf_position, and _ikcf_other Parameters
Stored XSS was discovered in the Easy Testimonials plugin 3.2 for WordPress. Three wp-admin/post.php parameters (_ikcf_client and _ikcf_position and _ikcf_other) have Cross-Site Scripting.
CVSS 6.1
EIP-2026-114559 EXPLOITDB text WORKING POC
YzmCMS 5.5 - 'url' Persistent Cross-Site Scripting