5 matches found
PT-2026-1589
Name of the Vulnerable Software and Affected Versions Moosend Landing Pages plugin for WordPress versions through 1.1.6 Description The Moosend Landing Pages plugin for WordPress has a flaw that allows unauthorized modification of data. This is due to a missing capability check within the moosend...
WordPress Print PDF Generator and Publisher Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)
Software Print PDF Generator and Publisher Type Plugin Vulnerable versions = 1.1.6 Fixed in 1.2.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-52394 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 67f74bacc218 Credits SOPROBRO Required...
WordPress Mags Theme <= 1.1.6 is vulnerable to Local File Inclusion
Software Mags Type Theme Vulnerable versions = 1.1.6 Fixed in 1.1.7 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-49701 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID e5bfc35540e7 Credits tahu.datar Required privilege Unauthenticated Publishe...
WordPress UltraAddons Elementor Lite Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)
Software UltraAddons Elementor Lite Type Plugin Vulnerable versions = 1.1.6 Fixed in 1.1.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4866 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 6acf063eea46 Credits stealthcopter...
PT-2010-2124 · Typo3 · Typo3 Helpdesk (Mg Help) Extension
Name of the Vulnerable Software and Affected Versions: TYPO3 Helpdesk mg help extension version 1.1.6 and earlier Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands. Recommendations: For versions 1.1.6 and earlier, update to a version later than 1.1.6 to...