15 matches found
WordPress Kallyas theme <= 4.21.0 - Authenticated (Contributor+) Local File Inclusion vulnerability
Authenticated Contributor+ Local File Inclusion vulnerability discovered by stealthcopter in WordPress Theme KALLYAS versions = 4.21.0...
WordPress Unlimited plugin <= 1.45 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by stealthcopter in WordPress Theme Unlimited versions = 1.45...
WordPress Wallet for WooCommerce plugin <= 1.5.6 - Authenticated (Subscriber+) Incorrect Conversion between Numeric Types vulnerability
Authenticated Subscriber+ Incorrect Conversion between Numeric Types vulnerability discovered by stealthcopter in WordPress Plugin TeraWallet – For WooCommerce versions = 1.5.6...
WordPress Fediverse Embeds plugin <= 1.5.3 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Fediverse Embeds versions = 1.5.3...
WordPress Verbalize WP plugin <= 1.0 - Arbitrary File Upload vulnerability
Arbitrary File Upload vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Verbalize WP versions = 1.0...
WordPress Limb Gallery plugin <= 1.5.7 - Arbitrary File Download vulnerability
Arbitrary File Download vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin WordPress Gallery Plugin – Limb Image Gallery versions = 1.5.7...
WordPress Easy PayPal & Stripe Buy Now Button plugin <= 1.9 - Open Redirection vulnerability
Open Redirection vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Easy PayPal Buy Now Button versions = 1.9...
WordPress Elespare plugin <= 3.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Horizontal Nav Menu Widget vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Horizontal Nav Menu Widget vulnerability discovered by stealthcopter in WordPress Plugin Elespare versions = 3.1.2...
WordPress SKT Addons for Elementor plugin <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by stealthcopter in WordPress Plugin SKT Addons for Elementor versions = 2.0...
WordPress Responsive Owl Carousel for Elementor plugin <= 1.2.0 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by stealthcopter in WordPress Plugin Responsive Owl Carousel for Elementor versions = 1.2.0...
WordPress The Plus Addons for Elementor plugin <= 5.5.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by stealthcopter in WordPress Plugin The Plus Addons for Elementor Page Builder Lite versions = 5.5.4...
WordPress LearnPress plugin <= 4.2.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via layout_html Parameter vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via layouthtml Parameter vulnerability discovered by stealthcopter in WordPress Plugin LearnPress versions = 4.2.6.5...
WordPress WP Latest Posts plugin <= 5.0.7 - Authenticated (Subscriber+) Arbitrary Shortcode Execution vulnerability
Authenticated Subscriber+ Arbitrary Shortcode Execution vulnerability discovered by stealthcopter in WordPress Plugin WP Latest Posts versions = 5.0.7...
WordPress LearnPress plugin <= 4.2.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by stealthcopter in WordPress Plugin LearnPress versions = 4.2.6.4...
WordPress QR Code Composer plugin <= 2.0.3 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin QR Code Composer versions = 2.0.3...