3 matches found
WordPress WP Conference Schedule Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)
Software WP Conference Schedule Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID ba96f2b6bb14 Credits Rafie Muhammad Patchstack...
WordPress WP Conference Schedule plugin < 1.1.0 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress WP Conference Schedule plugin versions 1.1.0. Solution Update the WordPress WP Conference Schedule plugin to the latest available version at least 1.1.0...
WordPress WP Conference Schedule plugin < 1.1.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WP Conference Schedule plugin versions 1.1.0. Solution Update the WordPress WP Conference Schedule plugin to the latest available version at least 1.1.0...