Lucene search

Pricing Table By Supsystic Security Vulnerabilities

cve

CVE-2020-9392

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. Because there is no permission check on the ImportJSONTable, createFromTpl, and getJSONExportTable endpoints, unauthenticated users can retrieve pricing table information, create new tables, or import/modif...

7.3CVSS

7.5AI Score

0.001EPSS

2020-03-23 05:15 PM

cve

CVE-2020-9393

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. It allows XSS.

6.1CVSS

6.8AI Score

0.001EPSS

2020-02-25 07:15 PM

cve

CVE-2020-9394

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. It allows CSRF.

8.8CVSS

8.6AI Score

0.001EPSS

2020-02-25 07:15 PM

cve

CVE-2021-46782

The Pricing Table by Supsystic WordPress plugin before 1.9.5 does not escape the tab parameter before outputting it back in an attribute in the admin dashboard, leading to a Reflected Cross-Site Scripting

6.1CVSS

6.1AI Score

0.001EPSS

2022-04-25 04:16 PM