cleantalk
Vulnerabilities and Security Researches

LocalWeb All In One, 116526588980e206d0dd7a83f2b37ae6f2a43810

CVE, Research URL

116526588980e206d0dd7a83f2b37ae6f2a43810

Home page URL

Security reports for LocalWeb All In One

Application

LocalWeb All In One

Published on
Oct 20, 2020
Research Description
LocalWeb All In One [lw-all-in-one] < 1.6.5 WordPress LocalWeb All In One plugin <= 1.6.4 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by m0ze (Ex.Mi) in WordPress LocalWeb All In One plugin (versions <= 1.6.4).
Affected versions
max 1.6.5.
Status
vulnerable
Previous vulnerability researches
LocalWeb All In One (116526588980e206d0dd7a83f2b37ae6f2a43810) , Jun 07, 2024
LocalWeb All In One (2e318f1f7c17f31318df511c6c796657071482ba) , Jun 16, 2026
LocalWeb All In One (c8069655-fc7b-4b97-b871-45705260fb1b) , Jun 16, 2026
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026