Luckywp Table Of Contents Security Vulnerabilities and Issues — Luckywp Table Of Contents CVE List

Lucene search

TheluckywpLuckywp Table Of Contents

3 matches found

CVE•added 2024/05/22 8:15 a.m.•50 views

CVE-2024-2119

The LuckyWP Table of Contents plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the attrs parameter in all versions up to, and including, 2.1.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary...

6.1CVSS6.2AI score0.01127EPSS

CVE•added 2024/05/22 8:15 a.m.•49 views

CVE-2023-6487

The LuckyWP Table of Contents plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Header Title' field in all versions up to and including 2.1.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-l...

5.4CVSS4.7AI score0.00155EPSS

CVE•added 2024/05/22 8:15 a.m.•45 views

CVE-2024-2953

The LuckyWP Table of Contents plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 2.1.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with Contributor permissions...

5.5CVSS5.3AI score0.00241EPSS