Lucene search
K

4 matches found

Patchstack
Patchstack
added 2021/07/20 12:0 a.m.17 views

WordPress Giveaway plugin <= 1.2.2 - Authenticated SQL Injection (SQLi) vulnerability

Authenticated SQL Injection SQLi vulnerability discovered by Mesut Cetin in WordPress Giveaway plugin versions = 1.2.2. Solution This plugin has been closed as of July 1, 2021 and is not available for download. This closure is temporary, pending a full review...

7.2CVSS3.5AI score0.01344EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2021/06/21 12:0 a.m.22 views

WordPress Include Me plugin <= 1.2.1 - Path traversal and Local File Inclusion (LFI) vulnerability leading to Remote Code Execution (RCE)

Path traversal and Local File Inclusion LFI vulnerability leading to Remote Code Execution RCE discovered by Mesut Cetin in WordPress Include Me plugin versions = 1.2.1. Solution Update the WordPress Include Me plugin to the latest available version at least 1.2.2...

9CVSS4.3AI score0.04956EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2021/05/26 12:0 a.m.29 views

WordPress Visitors plugin <= 0.3 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability

Unauthenticated Stored Cross-Site Scripting XSS vulnerability discovered by Mesut Cetin in WordPress Visitors plugin versions = 0.3. Solution This plugin has been closed as of May 26, 2021 and is not available for download. This closure is temporary, pending a full review...

6.1CVSS2.8AI score0.01303EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2021/05/25 12:0 a.m.12 views

WordPress Cookie Law Bar plugin <= 1.2.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Mesut Cetin in WordPress Cookie Law Bar plugin versions = 1.2.1. Solution 2021 May 27th, no information about the patched version available, the last update released 4 years ago...

1.7AI score
Exploits0References4Affected Software1
Rows per page
Query Builder