Shiftcontroller Security Vulnerabilities and Issues — Shiftcontroller CVE List

PlainwareShiftcontroller

4 matches found

CVE•added 2023/06/09 5:33 a.m.•40 views

CVE-2023-1978

CVE-2023-1978 describes a Reflected Cross-Site Scripting (XSS) in the WordPress plugin “ShiftController Employee Shift Scheduling” for versions

6.1CVSS6AI score0.01355EPSS

CVE•added 2023/06/26 7:17 a.m.•40 views

CVE-2023-29424

The CVE-2023-29424 entry concerns the WordPress ShiftController Employee Shift Scheduling plugin (versions

7.1CVSS5.2AI score0.0008EPSS

CVE•added 2023/11/12 9:16 p.m.•38 views

CVE-2023-29425

CVE-2023-29425 is a CSRF vulnerability in the plainware.Com ShiftController Employee Shift Scheduling WordPress plugin, affecting versions

8.8CVSS7.1AI score0.00051EPSS

CVE•added 2024/10/04 6:48 a.m.•33 views

CVE-2024-9435

CVE-2024-9435 refers to the ShiftController Employee Shift Scheduling WordPress plugin. Affected versions up to and including 4.9.66 are vulnerable to a reflected Cross-Site Scripting (XSS) via URL keys due to insufficient input sanitization and output escaping. The vulnerability can be exploited...

6.1CVSS6.2AI score0.01684EPSS