44 matches found
WordPress User Activity Log Pro plugin <= 2.3.4 - Subscriber+ SQL Injection vulnerability
Subscriber+ SQL Injection vulnerability discovered by Dave Jong Patchstack in WordPress Plugin User Activity Log Pro versions = 2.3.4...
WordPress WP Poll Maker plugin <= 3.1 - Subscriber+ Arbitrary File Deletion vulnerability
Subscriber+ Arbitrary File Deletion vulnerability discovered by Yudistira Arya Patchstack Alliance in WordPress Plugin WP Poll Maker versions = 3.1...
CVE-2023-0875 WP Meta SEO < 4.5.3 - Subscriber+ SQLi
The WP Meta SEO WordPress plugin before 4.5.3 does not properly sanitize and escape inputs into SQL queries, leading to a blind SQL Injection vulnerability that can be exploited by subscriber+ users...
CVE-2022-41788
Auth. subscriber+ Cross-Site Scripting XSS vulnerability in Soledad premium theme = 8.2.5 on WordPress...