Techotronic - All In One Favicon CVE

Filtered by vendor Techotronic Subscribe

Filtered by product All In One Favicon

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-13832	1 Techotronic	1 All In One Favicon	2024-11-21	3.5 LOW	4.8 MEDIUM
Multiple Persistent cross-site scripting (XSS) issues in the Techotronic all-in-one-favicon (aka All In One Favicon) plugin 4.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via Apple-Text, GIF-Text, ICO-Text, PNG-Text, or JPG-Text.

Vulnerabilities (CVE)