Flatpm@* Security Vulnerabilities and Issues — Flatpm@* CVE List

Lucene search

MehanoidFlatpm*

2 matches found

CVE•added 2022/12/12 6:15 p.m.•74 views

CVE-2022-3934

The FlatPM WordPress plugin before 3.0.13 does not sanitise and escape some parameters before outputting them back in pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin

5.4CVSS5.2AI score0.24785EPSS

CVE•added 2024/03/27 1:15 p.m.•45 views

CVE-2024-29803

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mehanoid.Pro FlatPM allows Stored XSS.This issue affects FlatPM: from n/a before 3.1.05.

6.5CVSS6.7AI score0.00143EPSS