Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
ThimpressWp Pipes

6 matches found

CVE
CVEadded 2024/12/11 9:15 a.m.44 views

CVE-2024-12283

The WP Pipes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘x1’ parameter in all versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pa...

6.1CVSS6.4AI score0.00182EPSS
CVE
CVEadded 2023/10/03 1:15 p.m.43 views

CVE-2023-40009

Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Pipes plugin

6.5CVSS6AI score0.00047EPSS
CVE
CVEadded 2023/03/29 7:15 p.m.41 views

CVE-2022-45355

Auth. (admin+) SQL Injection (SQLi) vulnerability in ThimPress WP Pipes plugin

8.2CVSS7.7AI score0.00253EPSS
CVE
CVEadded 2025/05/07 3:16 p.m.39 views

CVE-2025-47664

Server-Side Request Forgery (SSRF) vulnerability in ThimPress WP Pipes allows Server Side Request Forgery. This issue affects WP Pipes: from n/a through 1.4.2.

4.4CVSS4.8AI score0.00035EPSS
CVE
CVEadded 2025/06/09 4:15 p.m.37 views

CVE-2025-48267

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ThimPress WP Pipes allows Path Traversal. This issue affects WP Pipes: from n/a through 1.4.2.

8.6CVSS6.9AI score0.00069EPSS
CVE
CVEadded 2025/07/16 12:15 p.m.8 views

CVE-2025-28982

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ThimPress WP Pipes allows SQL Injection. This issue affects WP Pipes: from n/a through 1.4.3.

9.3CVSS7.2AI score0.00039EPSS