4 matches found
WordPress Integration for Contact Form 7 and Constant Contact plugin <= 1.1.6 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by Frissi0n in WordPress Plugin Integration for Contact Form 7 and Constant Contact versions = 1.1.6...
CVE-2025-68577
Missing Authorization vulnerability in Virusdie Virusdie virusdie allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Virusdie: from n/a through = 1.1.6...
CVE-2025-12112
CVE-2025-12112 affects the WordPress plugin Insert Headers and Footers Code – HT Script (HT Script) up to version 1.1.6. It is a Stored Cross-Site Scripting vulnerability due to insufficient capability checks, exploitable by authenticated attackers with Author-level access and higher to inject sc...
Wordpress Themify Portfolio Post 跨站脚本漏洞
Wordpress Themify Portfolio Post is Wordpress an open source application plugin . Provide a neat layout to display project information features . A cross-site scripting vulnerability exists in Themify Portfolio Post WordPress plugin versions prior to 1.1.6. The vulnerability stems from the progra...