Zotpress Security Vulnerabilities and Issues — Zotpress CVE List

Lucene search

KatieseabornZotpress

3 matches found

CVE•added 2024/03/29 2:15 p.m.•48 views

CVE-2024-30488

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Katie Seaborn Zotpress.This issue affects Zotpress: from n/a through 7.3.7.

8.8CVSS8.8AI score0.00284EPSS

CVE•added 2024/11/05 10:21 a.m.•41 views

CVE-2024-7429

The Zotpress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the Zotpress_process_accounts_AJAX function in all versions up to, and including, 7.3.12. This makes it possible for authenticated attackers, with Contributor-level access and a...

4.3CVSS4.2AI score0.00067EPSS

CVE•added 2023/10/31 10:15 a.m.•28 views

CVE-2023-46313

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Katie Seaborn Zotpress plugin

7.1CVSS6AI score0.00083EPSS