The weblibrarian plugin before 3.4.8.5 for WordPress has XSS via front-end short codes.
6.1CVSS
6AI Score
0.001EPSS
The weblibrarian plugin before 3.4.8.6 for WordPress has XSS via front-end short codes.
6.1CVSS
6AI Score
0.001EPSS
The weblibrarian plugin before 3.4.8.7 for WordPress has XSS via front-end short codes.
6.1CVSS
6AI Score
0.001EPSS
Deepwoods Software WebLibrarian 3.5.2 and earlier is affected by: SQL Injection. The impact is: Exposing the entire database. The component is: Function "AllBarCodes" (defined at database_code.php line 1018) is vulnerable to a boolean-based blind sql injection. This function call can be triggered b...
6.5CVSS
6.9AI Score
0.001EPSS
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Robert Heller WebLibrarian plugin <= 3.5.8.1 versions.
7.1CVSS
6AI Score
0.001EPSS