Unk9vvN

6 exploits Active since May 2019
CVE-2019-25314 EXPLOITDB MEDIUM text WORKING POC
Yoast Duplicate-Post WP <3.2.3 - XSS
Yoast Duplicate-Post WordPress Plugin 3.2.3 contains a persistent cross-site scripting vulnerability in plugin settings parameters. Attackers can inject malicious scripts into title prefix, suffix, menu order, and blacklist fields to execute arbitrary JavaScript in admin interfaces.
CVSS 5.5
EIP-2026-114075 EXPLOITDB text WORKING POC
WordPress Plugin Soliloquy Lite 2.5.6 - Persistent Cross-Site Scripting
EIP-2026-113761 EXPLOITDB text WORKING POC
WordPress Plugin FooGallery 1.8.12 - Persistent Cross-Site Scripting
EIP-2026-113973 EXPLOITDB text WORKING POC
WordPress Plugin Popup Builder 3.49 - Persistent Cross-Site Scripting
CVE-2019-11398 EXPLOITDB MEDIUM text WORKING POC
UliCMS 2019.2-2019.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in UliCMS 2019.2 and 2019.1 allow remote attackers to inject arbitrary web script or HTML via the go parameter to admin/index.php, the go parameter to /admin/index.php?register=register, or the error parameter to admin/index.php?action=favicon.
CVSS 6.1
EIP-2026-105101 EXPLOITDB text WORKING POC
all-in-one-seo-pack 3.2.7 - Persistent Cross-Site Scripting