3 matches found
PT-2024-17327 · WordPress · Spoki
Name of the Vulnerable Software and Affected Versions: Spoki – Chat Buttons and WooCommerce Notifications plugin for WordPress versions up to, and including, 2.15.14 Description: The issue is related to Stored Cross-Site Scripting via the plugin's spoki button shortcode due to insufficient input...
WordPress Knowledge Base documentation & wiki plugin – BasePress plugin <= 2.15.13 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Knowledge Base documentation & wiki plugin – BasePress plugin versions = 2.15.13. Solution Update the WordPress Knowledge Base documentation & wiki plugin – BasePress plugin to the latest available...
WordPress Knowledge Base documentation & wiki plugin – BasePress plugin <= 2.15.13 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress Knowledge Base documentation & wiki plugin – BasePress plugin versions = 2.15.13. Solution Update the WordPress Knowledge Base documentation & wiki plugin – BasePress plugin to the latest available version at least 2.15.14...