2 matches found
PT-2024-20637 · Veronalabs · Veronalabs Wp Sms
Name of the Vulnerable Software and Affected Versions: VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc versions n/a through 6.5.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-si...
CVE-2023-6883
The Easy Social Feed plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX functions in all versions up to, and including, 6.5.2. This makes it possible for authenticated attackers, with subscriber-level access and above, to...