Lucene search

Launcher Security Vulnerabilities - February

cve

CVE-2019-7411

Multiple stored cross-site scripting (XSS) in the MyThemeShop Launcher plugin 1.0.8 for WordPress allow remote authenticated users to inject arbitrary web script or HTML via fields as follows: (1) Title, (2) Favicon, (3) Meta Description, (4) Subscribe Form (Name field label, Last name field label,...

5.4CVSS

5.1AI Score

0.001EPSS

2019-05-13 02:29 PM

cve

CVE-2021-36829

Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in MyThemeShop Launcher: Coming Soon & Maintenance Mode plugin <= 1.0.11 at WordPress.

4.8CVSS

4.8AI Score

0.001EPSS

2022-09-06 06:15 PM

cve

CVE-2024-37938

Cross-Site Request Forgery (CSRF) vulnerability in MyThemeShop SociallyViral.This issue affects SociallyViral: from n/a through 1.0.10.

4.3CVSS

4.6AI Score

0.0004EPSS

2024-07-12 02:15 PM