4 matches found
WordPress WS Form LITE Plugin <= 1.9.244 is vulnerable to Cross Site Scripting (XSS)
Software WS Form LITE Type Plugin Vulnerable versions = 1.9.244 Fixed in 1.9.245 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10647 Patch priority Medium CVSS severity Medium 7.1 Developer WS Form PSID fff125dfb47d Credits Peter Thaleikis Required...
WordPress WS Form LITE Plugin <= 1.9.238 is vulnerable to Cross Site Scripting (XSS)
Software WS Form LITE Type Plugin Vulnerable versions = 1.9.238 Fixed in 1.9.244 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-47320 Patch priority Medium CVSS severity Medium 7.1 Developer WS Form PSID cb1829e55bbc Credits savphill Required privilege...
WordPress WS Form LITE plugin <= 1.9.217 - Unauthenticated CSV Injection vulnerability
Unauthenticated CSV Injection vulnerability discovered by Duc Manh in WordPress Plugin WS Form LITE versions = 1.9.217...
WordPress WS Form LITE Plugin <= 1.9.170 is vulnerable to SQL Injection
Software WS Form LITE Type Plugin Vulnerable versions = 1.9.170 Fixed in 1.9.171 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2023-52135 Patch priority Low CVSS severity Low 7.6 Developer WS Form PSID c63b8c8c0314 Credits Muhammad Daffa Required privilege Administrator Publishe...