Lucene search
HAL Security Vulnerabilities
cve
The HAL WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the ~/wp-hal.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including....
5.5CVSS
4.8AI Score
0.001EPSS
2021-10-15 01:15 PM
21
cve
Cross-site scripting (XSS) vulnerability in multiple Hal Networks shopping-cart products allows remote attackers to inject arbitrary web script or HTML via unspecified...
5.7AI Score
0.003EPSS
2008-01-31 08:00 PM
19