3 matches found
WordPress W4 Post List Plugin < 2.4.6 is vulnerable to Cross Site Scripting (XSS)
Software W4 Post List Type Plugin Vulnerable versions 2.4.6 Fixed in 2.4.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1373 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID ad8aa4c045d1 Credits Erwan LR WPScan Required...
WordPress W4 Post List Plugin <= 2.4.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software W4 Post List Type Plugin Vulnerable versions = 2.4.2 Fixed in 2.4.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-47150 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 383cfa4a9ebc Credits István Márton Required...
WordPress W4 Post List Plugin <= 2.4.4 is vulnerable to Cross Site Scripting (XSS)
Software W4 Post List Type Plugin Vulnerable versions = 2.4.4 Fixed in 2.4.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-27413 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d11d5bfd3465 Credits Abdi Pranata Required...