Lucene search
K
GranthwebGo Pricing

4 matches found

CVE
CVE
added 2023/05/23 11:36 p.m.64 views

CVE-2023-2494

CVE-2023-2494 affects the Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress. Vulnerable in versions up to 3.3.19 due to a missing capability check in the function process_postdata, enabling authenticated attackers (with a role granted access to the plugin) to modify access to ...

8.8CVSS8.2AI score0.00369EPSS
CVE
CVE
added 2023/05/23 11:36 p.m.63 views

CVE-2023-2496

CVE-2023-2496 refers to the Go Pricing - WordPress Responsive Pricing Tables plugin. Affected versions up to 3.3.19 are vulnerable to unauthorized arbitrary file uploads due to an improper capability check in the validate_upload function. This allows authenticated attackers with a role granted ac...

7.5CVSS8.1AI score0.00794EPSS
CVE
CVE
added 2023/05/23 11:36 p.m.62 views

CVE-2023-2498

CVE-2023-2498 affects the Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress. A stored XSS via shortcodes exists in versions up to and including 3.3.19 due to insufficient input sanitization and output escaping, enabling contributed-level attackers to inject scripts on pages vi...

6.4CVSS5.3AI score0.00365EPSS
CVE
CVE
added 2023/05/24 11:38 p.m.55 views

CVE-2023-2500

CVE-2023-2500 affects the Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress (versions ≤ 3.3.19). The vulnerability is PHP Object Injection via deserialization of untrusted input in the go_pricing shortcode data parameter. It requires subscriber-level authentication or higher; ...

8.8CVSS8.8AI score0.00884EPSS