CVE-2024-32601

Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Popup Anything.This issue affects Popup Anything: from n/a through 2.8...

CVE-2023-38516

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WP OnlineSupport, Essential Plugin Audio Player with Playlist Ultimate plugin = 1.2.2 versions...

CVE-2022-46846

Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Trending/Popular Post Slider and Widget allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Trending/Popular Post Slider and Widget: from n/a through 1.5.7...

CVE-2022-45818

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WP OnlineSupport, Essential Plugin Hero Banner Ultimate plugin = 1.3.4 versions...

CVE-2022-46846

Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Trending/Popular Post Slider and Widget allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Trending/Popular Post Slider and Widget: from n/a through 1.5.7...

CVE-2024-43232

CVE-2024-43232 involves an improper limitation of a pathname in the WP Timeline and History slider (WP OnlineSupport/Essential Plugin) that permits PHP Local File Inclusion. According to the connected material, this path-traversal vulnerability affects the Timeline and History slider versions up ...

PT-2023-26493 · Unknown +1 · Wp Onlinesupport +1

Name of the Vulnerable Software and Affected Versions: WP OnlineSupport, Essential Plugin Audio Player with Playlist Ultimate plugin versions 1.2.2 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects users with contributor or higher...