Lucene search

XLPlugins Security Vulnerabilities

cve

CVE-2024-32104

Cross-Site Request Forgery (CSRF) vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through...

4.3CVSS

7.5AI Score

0.0004EPSS

2024-04-15 09:15 AM

cve

CVE-2024-32107

Cross-Site Request Forgery (CSRF) vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through...

4.3CVSS

7.5AI Score

0.0004EPSS

2024-04-11 01:15 PM

cve

CVE-2024-1120

The NextMove Lite – Thank You Page for WooCommerce and Finale Lite – Sales Countdown Timer & Discount for WooCommerce plugins for WordPress are vulnerable to unauthorized access of data due to a missing capability check on the download_tools_settings() function in all versions up to, and...

5.3CVSS

7AI Score

0.0004EPSS

2024-03-01 10:15 AM

cve

CVE-2023-39162

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in XLPlugins User Email Verification for WooCommerce plugin <= 3.5.0...

6.1CVSS

6AI Score

0.0005EPSS

2023-09-04 10:15 AM