Patchstack - Page 100 of Patchstack Most Viewed Vulnerabilities List

Patchstack•added 2022/03/21 12:0 a.m.•15 views

WordPress Podcast Importer SecondLine plugin <= 1.3.7 - SQL Injection (SQLi) vulnerability

SQL Injection SQLi vulnerability discovered by YICHENG LIU-ZTE CHENFENG lab in WordPress Podcast Importer SecondLine plugin versions = 1.3.7. Solution Update the WordPress Podcast Importer SecondLine plugin to the latest available version at least 1.3.8...

7.2CVSS2.5AI score0.00567EPSS

Exploits2References3Affected Software1

WordPress Master Addons for Elementor plugin < 1.8.5 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Master Addons for Elementor plugin versions 1.8.5. Solution Update the WordPress Master Addons for Elementor plugin to the latest available version at least 1.8.5...

WordPress WordPress Cloaking – Show & Create Geo-Targeted Custom HTML Plugin – GeoRequest plugin <= 0.1.9 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WordPress Cloaking – Show & Create Geo-Targeted Custom HTML Plugin – GeoRequest plugin versions = 0.1.9. Solution No patched version available...

3.3AI score

WordPress Post Snippets plugin <= 3.1.6 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Post Snippets plugin versions = 3.1.6. Solution Update the WordPress Post Snippets plugin to the latest available version at least 3.1.7...

1.8AI score

WordPress Dashy – Google Analytics advanced dashboard plugin <= 2.1.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Dashy – Google Analytics advanced dashboard plugin versions = 2.1.8. Solution No patched version available...

3.5AI score

WordPress HelpDesk & Support Ticket System Plugin – Octrace Support plugin <= 1.2.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress HelpDesk & Support Ticket System Plugin – Octrace Support plugin versions = 1.2.2. Solution Update the WordPress HelpDesk & Support Ticket System Plugin – Octrace Support plugin to the latest available...

3.5AI score

WordPress WP Contact Slider plugin <= 2.4.4 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WP Contact Slider plugin versions = 2.4.4. Solution Update the WordPress WP Contact Slider plugin to the latest available version at least 2.4.5...

3.9AI score

WordPress WooCommerce Disable Payment Methods based on cart conditions plugin < 1.13.1.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress WooCommerce Disable Payment Methods based on cart conditions plugin versions 1.13.1.1. Solution Update the WordPress WooCommerce Disable Payment Methods based on cart conditions plugin to the latest available version at least...

9.8CVSS3.1AI score0.00868EPSS

WordPress Advanced Booking Calendar plugin <= 1.6.9 - Unauthenticated SQL Injection (SQLi) vulnerability

Unauthenticated SQL Injection SQLi vulnerability discovered by cydave in WordPress Advanced Booking Calendar plugin versions = 1.6.9. Solution Update the WordPress Advanced Booking Calendar plugin to the latest available version at least 1.7.0...

Exploits2References3Affected Software1

WordPress Postcode Redirect plugin < 4.0.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Postcode Redirect plugin versions 4.0.1. Solution Update the WordPress Postcode Redirect plugin to the latest available version at least 4.0.1...

WordPress Impexium Single Sign On plugin <= 1.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Impexium Single Sign On plugin versions = 1.1. Solution No patched version available...

WordPress RT Easy Builder – Advanced addons for Elementor plugin <= 1.4 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress RT Easy Builder – Advanced addons for Elementor plugin versions = 1.4. Solution Update the WordPress RT Easy Builder – Advanced addons for Elementor for PayFabric plugin to the latest available version at least 1.5...

WordPress Conversion de moneda Woocommerce plugin <= 1.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Conversion de moneda Woocommerce plugin versions = 1.0. Solution No patched version available...

4.4AI score

WordPress "WordPress form builder plugin for contact forms, surveys and quizzes – Tripetto" plugin < 5.3.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress "WordPress form builder plugin for contact forms, surveys and quizzes – Tripetto" plugin versions 5.3.2. Solution Update the WordPress "WordPress form builder plugin for contact forms, surveys and quizzes – Tripetto" plugin to...

2.2AI score

WordPress Rocket Addons – Conditional logic and form addons for Elementor Pro plugin <= 1.0.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Rocket Addons – Conditional logic and form addons for Elementor Pro plugin versions = 1.0.1. Solution No patched version available...

2.5AI score

WordPress Ultimate Widgets Light plugin <= 1.5.9.4 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Ultimate Widgets Light plugin versions = 1.5.9.4. Solution No patched version available...

3.2AI score

WordPress Blog Navigator Chatbot by Xatkit plugin <= 2.1.3 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Blog Navigator Chatbot by Xatkit plugin versions = 2.1.3. Solution Update the WordPress Blog Navigator Chatbot by Xatkit plugin to the latest available version at least 2.1.4...

2.5AI score

WordPress Addendio LITE – Find WordPress plugins and themes plugin <= 1.2.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Addendio LITE – Find WordPress plugins and themes plugin versions = 1.2.2. Solution No patched version available...

3.9AI score

WordPress Cryptocurrency Product for WooCommerce plugin <= 3.14.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Cryptocurrency Product for WooCommerce plugin versions = 3.14.0. Solution Update the WordPress Cryptocurrency Product for WooCommerce plugin to the latest available version at least 3.14.6...

WordPress Tickera plugin < 3.4.9.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Tickera plugin versions 3.4.9.2. Solution Update the WordPress Tickera plugin to the latest available version at least 3.4.9.2...

WordPress annasta Woocommerce Product Filters plugin < 1.5.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress annasta Woocommerce Product Filters plugin versions 1.5.0. Solution Update the WordPress annasta Woocommerce Product Filters plugin to the latest available version at least 1.5.0...

3AI score

WordPress Add Expires Headers & Optimized Minify plugin < 2.5 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Add Expires Headers & Optimized Minify plugin versions 2.5. Solution Update the WordPress Add Expires Headers & Optimized Minify plugin to the latest available version at least 2.5...

1.5AI score

WordPress Location Picker at Checkout for WooCommerce plugin <= 1.4.4 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Location Picker at Checkout for WooCommerce plugin versions = 1.4.4. Solution Update the WordPress Location Picker at Checkout for WooCommerce plugin to the latest available version at least 1.4.5...

2.7AI score

WordPress Logo Showcase with Slick Slider plugin < 2.0.3 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Logo Showcase with Slick Slider plugin versions 2.0.3. Solution Update the WordPress Logo Showcase with Slick Slider plugin to the latest available version at least 2.0.3...

WordPress Google My Business Manager plugin <= 1.1.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Google My Business Manager plugin versions = 1.1.2. Solution No patched version available...

WordPress CAPTCHA 4WP plugin < 7.0.5 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress CAPTCHA 4WP plugin versions 7.0.5. Solution Update the WordPress CAPTCHA 4WP plugin to the latest available version at least 7.0.5...

2.4AI score

WordPress Location Picker at Checkout for WooCommerce plugin <= 1.4.4 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Location Picker at Checkout for WooCommerce plugin versions = 1.4.4. Solution Update the WordPress Location Picker at Checkout for WooCommerce plugin to the latest available version at least 1.4.5...

WordPress Ultimate Post Kit – Addons For Elementor plugin < 2.9.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Ultimate Post Kit – Addons For Elementor plugin versions 2.9.1. Solution Update the WordPress Ultimate Post Kit – Addons For Elementor plugin to the latest available version at least 2.9.1...

2.7AI score

WordPress Blog Sidebar Widget plugin <= 1.0.5 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Blog Sidebar Widget plugin versions = 1.0.5. Solution No patched version available...

3.9AI score

WordPress WP Tools Gravity Forms Divi Module plugin <= 6.6.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WP Tools Gravity Forms Divi Module plugin versions = 6.6.2. Solution Update the WordPress WP Tools Gravity Forms Divi Module plugin to the latest available version at least 6.6.3...

2.8AI score

WordPress VO Store Locator – WP Store Locator Plugin plugin <= 3.3.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress VO Store Locator – WP Store Locator Plugin plugin versions = 3.3.0. Solution No patched version available...

1.8AI score

WordPress Integrate Automate – WordPress, WooCommerce & CF7 for IFTTT, Zapier, Automate.io other API glue Platforms plugin <= 1.0.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Integrate Automate – WordPress, WooCommerce & CF7 for IFTTT, Zapier, Automate.io other API glue Platforms plugin versions = 1.0.0. Solution Update the WordPress Integrate Automate – WordPress,...

4.5AI score

WordPress "Bulk Auto Image Alt Text (Alt tag, Alt attribute) optimization (image SEO) + Woocommerce" plugin < 1.4.5.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress "Bulk Auto Image Alt Text Alt tag, Alt attribute optimization image SEO + Woocommerce" plugin versions 1.4.5.0. Solution Update the WordPress "Bulk Auto Image Alt Text Alt tag, Alt attribute optimization image SEO + Woocommerc...

2.9AI score

WordPress Blog Navigator Chatbot by Xatkit plugin <= 2.1.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Blog Navigator Chatbot by Xatkit plugin versions = 2.1.3. Solution Update the WordPress Blog Navigator Chatbot by Xatkit plugin to the latest available version at least 2.1.4...

3.7AI score

WordPress WooCommerce to Zoho CRM plugin <= 1.2.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress WooCommerce to Zoho CRM plugin versions = 1.2.0. Solution No patched version available...

2.4AI score

WordPress Admin Quick Panel plugin <= 1.2.5 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Admin Quick Panel plugin versions = 1.2.5. Solution Update the WordPress Admin Quick Panel plugin to the latest available version at least 1.2.6...

2.7AI score

WordPress Ajax Live Search Plugin For WordPress plugin <= 2.3.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Ajax Live Search Plugin For WordPress plugin versions = 2.3.7. Solution No patched version available...

WordPress Flight Search Widget and Blocks plugin <= 1.1.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Flight Search Widget and Blocks plugin versions = 1.1.0. Solution No patched version available...

1.7AI score

WordPress Books Gallery – Best Books Showcase & Library Plugin for WordPress plugin < 3.6 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Books Gallery – Best Books Showcase & Library Plugin for WordPress plugin versions 3.6. Solution Update the WordPress Books Gallery – Best Books Showcase & Library Plugin for WordPress plugin to the latest available version at...

2.8AI score

WordPress SLP – Extenders plugin < 5.9.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress SLP – Extenders plugin versions 5.9.1. Solution Update the WordPress SLP – Extenders plugin to the latest available version at least 5.9.1...

2.1AI score

WordPress Go Fetch Jobs (for JobEngine) plugin <= 1.0 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Go Fetch Jobs for JobEngine plugin versions = 1.0. Solution No patched version available...

1.9AI score

WordPress WP Phone Message plugin <= 1.1.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WP Phone Message plugin versions = 1.1.1. Solution No patched version available...

3.7AI score

WordPress Global Income Stats from Freemius plugin <= 1.0.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Global Income Stats from Freemius plugin versions = 1.0.0. Solution No patched version available...

WordPress Reset Course Progress For LearnDash plugin <= 1.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Reset Course Progress For LearnDash plugin versions = 1.3. Solution No patched version available...

3.6AI score

WordPress Elementor Addon Elements plugin < 1.11.14 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Elementor Addon Elements plugin versions 1.11.14. Solution Update the WordPress Elementor Addon Elements plugin to the latest available version at least 1.11.14...

2.5AI score

WordPress Elation theme < 1.1.01 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Elation theme versions 1.1.01. Solution Update the WordPress Elation theme to the latest available version at least 1.1.01...

3.2AI score

WordPress User Menus – Nav Menu Visibility plugin < 1.2.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress User Menus – Nav Menu Visibility plugin versions 1.2.8. Solution Update the WordPress User Menus – Nav Menu Visibility plugin to the latest available version at least 1.2.8...

3.7AI score

WordPress DiviTorque – Divi Theme, Divi Builder and Extra Theme plugin <= 3.4.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress DiviTorque – Divi Theme, Divi Builder and Extra Theme plugin versions = 3.4.3. Solution Update the WordPress DiviTorque – Divi Theme, Divi Builder and Extra Theme plugin to the latest available version...

4AI score

WordPress Starcat Review – WordPress Reviews & Rating Plugin with Woocommerce Integration plugin <= 0.7.6 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Starcat Review – WordPress Reviews & Rating Plugin with Woocommerce Integration plugin versions = 0.7.6. Solution Update the WordPress Starcat Review – WordPress Reviews & Rating Plugin with Woocommerce Integration plugin to t...

3.6AI score