3 matches found
WordPress HelpGent plugin <= 2.2.5 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by LVT-tholv2k in WordPress Plugin HelpGent versions = 2.2.5...
WordPress uListing plugin <= 2.2.0 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Phat RiO - Fore-Z co.ltd in WordPress Plugin uListing versions = 2.2.0...
WordPress Sponsors Plugin <= 3.5.1 is vulnerable to Cross Site Scripting (XSS)
Software Sponsors Type Plugin Vulnerable versions = 3.5.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30483 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID fb48b8770a30 Credits Ray Wilson Required privilege Contributor...