Lucene search
K
Tms-outsourceWpdatatables

8 matches found

CVE
CVE
added 2022/05/20 8:48 p.m.79 views

CVE-2022-29432

CVE-2022-29432 covers multiple authenticated persistent XSS vulnerabilities in the WordPress plugin wpDataTables (versions

4.8CVSS4.7AI score0.00489EPSS
CVE
CVE
added 2024/03/13 3:26 p.m.72 views

CVE-2024-0591

CVE-2024-0591 — wpDataTables WordPress plugin is a reflected XSS in the A parameter affecting versions up to 3.4.2.2, caused by insufficient input sanitization and output escaping. Unauthenticated attackers could inject scripts into pages that are executed when a user is tricked into performing a...

6.1CVSS6.4AI score0.0061EPSS
CVE
CVE
added 2021/04/12 1:58 p.m.56 views

CVE-2021-24198

The CVE concerns wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2, with Improper Access Control . A low-privilege authenticated user, on the page where a table is published, can tamper with parameters (id_key, id_val) to delete data belonging to other users in the same t...

8.1CVSS8AI score0.0147EPSS
CVE
CVE
added 2023/09/11 7:46 p.m.50 views

CVE-2023-4314

The wpDataTables WordPress plugin prior to version 2.1.66 fails to validate the input for the Serialized PHP array before deserialization, enabling an admin-assisted PHP object injection that may lead to remote code execution if a gadget chain exists. Affected software: wpDataTables

7.2CVSS7.5AI score0.01262EPSS
CVE
CVE
added 2021/04/12 1:58 p.m.46 views

CVE-2021-24197

The CVE concerns wpDataTables – Tables & Table Charts premium WordPress plugin, version prior to 3.4.2. The vulnerability is Improper Access Control: a low-privileged authenticated user visiting a published table page can tamper with request parameters (formdata[wdt_ID]) to assume table permissio...

8.1CVSS8AI score0.01237EPSS
CVE
CVE
added 2023/05/03 1:12 p.m.45 views

CVE-2023-23876

CVE-2023-23876 relates to a stored XSS vulnerability in the WordPress plugin wpDataTables (TMS-Plugins) versions 2.1.49. Public references indicate the impact is limited to this plugin/version range; no exploits or in-the-wild details are provided in the provided documents.

6.5CVSS5.4AI score0.00387EPSS
CVE
CVE
added 2021/04/12 1:59 p.m.42 views

CVE-2021-24200

The CVE-2021-24200 vulnerability affects the wpDataTables – Tables & Table Charts premium WordPress plugin prior to version 3.4.2. A low-privilege authenticated user can trigger a Boolean-based blind SQL Injection on the table list page via /wp-admin/admin-ajax.php?action=get_wdtable&table_id=1, ...

6.5CVSS6.8AI score0.01341EPSS
Web
CVE
CVE
added 2021/04/12 1:59 p.m.41 views

CVE-2021-24199

CVE-2021-24199 affects the wpDataTables – Tables & Table Charts premium WordPress plugin (versions before 3.4.2). The vulnerability is a Boolean-based blind SQL Injection in the table list page, exploitable via the POST parameter start on the endpoint /wp-admin/admin-ajax.php?action=get_wdtable&t...

6.5CVSS6.8AI score0.01341EPSS
Web