Amp For Wp Security Vulnerabilities and Issues — Amp For Wp CVE List

Lucene search

Magazine3Amp For Wp

4 matches found

CVE•added 2024/01/11 9:15 a.m.•59 views

CVE-2023-6782

The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 1.0.92 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for a...

6.4CVSS5.2AI score0.00148EPSS

CVE•added 2019/05/13 5:29 a.m.•54 views

CVE-2018-20838

ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored XSS.

5.4CVSS5.5AI score0.00316EPSS

CVE•added 2023/11/30 5:15 p.m.•54 views

CVE-2023-48321

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ahmed Kaludi, Mohammed Kaludi AMP for WP – Accelerated Mobile Pages allows Stored XSS.This issue affects AMP for WP – Accelerated Mobile Pages: from n/a through 1.0.88.1.

6.5CVSS6AI score0.00181EPSS

CVE•added 2024/10/25 8:15 a.m.•39 views

CVE-2024-9598

The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.99.1. This is due to missing or incorrect nonce validation on the 'proxy' function. This makes it possible for unauthenticated attackers to send the l...

8.8CVSS8.4AI score0.00089EPSS