Vulnerabilities and security researches forco-marquage-service-public co-marquage-service-public
Direction: ascendingJun 07, 2024
Co-marquage service-public.fr # CVE-2024-29908
- CVE, Research URL
- Home page URL
- Application
- Date
- Mar 27, 2024
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kienso Co-marquage service-public.Fr allows Stored XSS.This issue affects Co-marquage service-public.Fr: from n/a through 0.5.71.
- Affected versions
-
max 0.5.72.
- Status
-
vulnerable
Co-marquage service-public.fr # CVE-2024-29758
- CVE, Research URL
- Home page URL
- Application
- Date
- Mar 27, 2024
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kienso Co-marquage service-public.Fr allows Reflected XSS.This issue affects Co-marquage service-public.Fr: from n/a through 0.5.72.
- Affected versions
-
max 0.5.73.
- Status
-
vulnerable
Nov 22, 2024
Co-marquage service-public.fr # CVE-2024-10522
- CVE, Research URL
- Home page URL
- Application
- Date
- Nov 21, 2024
- Research Description
- The Co-marquage service-public.fr plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 0.5.76. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
- Affected versions
-
max 0.5.77.
- Status
-
vulnerable
Jan 10, 2026
Co-marquage service-public.fr # CVE-2025-62113
- CVE, Research URL
- Home page URL
- Application
- Date
- Dec 31, 2025
- Research Description
- Cross-Site Request Forgery (CSRF) vulnerability in emendo_seb Co-marquage service-public.Fr allows Cross Site Request Forgery.This issue affects Co-marquage service-public.Fr: from n/a through 0.5.77.
- Affected versions
-
max 0.5.77.
- Status
-
vulnerable