Missing Authorization vulnerability in Flothemes Flo Forms.This issue affects Flo Forms: from n/a through 1.0.42.
Source: Patchstack
Max CVSS
5.3
EPSS Score
0.04%
Published
2024-05-17
Updated
2024-05-17
Missing Authorization vulnerability in PluginEver Serial Numbers for WooCommerce – License Manager.This issue affects Serial Numbers for WooCommerce – License Manager: from n/a through 1.7.3.
Source: Patchstack
Max CVSS
5.3
EPSS Score
0.04%
Published
2024-05-17
Updated
2024-05-17
Server-Side Request Forgery (SSRF) vulnerability in ShortPixel ShortPixel Adaptive Images.This issue affects ShortPixel Adaptive Images: from n/a through 3.8.3.
Source: Patchstack
Max CVSS
4.4
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Academy LMS academy.This issue affects Academy LMS: from n/a through 1.9.25.
Source: Patchstack
Max CVSS
5.3
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Hidden Depth Sticky banner allows Stored XSS.This issue affects Sticky banner: from n/a through 1.2.0.
Source: Patchstack
Max CVSS
5.9
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AREOI All Bootstrap Blocks allows Stored XSS.This issue affects All Bootstrap Blocks: from n/a through 1.3.15.
Source: Patchstack
Max CVSS
5.9
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EnvoThemes Envo's Elementor Templates & Widgets for WooCommerce allows Stored XSS.This issue affects Envo's Elementor Templates & Widgets for WooCommerce: from n/a through 1.4.8.
Source: Patchstack
Max CVSS
6.5
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ninja Team Filebird.This issue affects Filebird: from n/a through 5.6.3.
Source: Patchstack
Max CVSS
5.3
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Gutenify.This issue affects Gutenify: from n/a through 1.4.0.
Source: Patchstack
Max CVSS
5.3
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.1.32.
Source: Patchstack
Max CVSS
4.3
EPSS Score
N/A
Published
2024-05-10
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in Cozmoslabs, Razvan Mocanu, Madalin Ungureanu, Cristophor Hurduban TranslatePress.This issue affects TranslatePress: from n/a through 2.7.5.
Source: Patchstack
Max CVSS
4.3
EPSS Score
N/A
Published
2024-05-10
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in Warfare Plugins Social Warfare.This issue affects Social Warfare: from n/a through 4.4.5.1.
Source: Patchstack
Max CVSS
4.3
EPSS Score
N/A
Published
2024-05-10
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter.This issue affects Arigato Autoresponder and Newsletter: from n/a through 2.7.2.3.
Source: Patchstack
Max CVSS
4.3
EPSS Score
0.04%
Published
2024-05-10
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress.This issue affects WebinarPress: from n/a through 1.33.17.
Source: Patchstack
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-05-10
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms.This issue affects Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.2.0.
Source: Patchstack
Max CVSS
4.3
EPSS Score
0.04%
Published
2024-05-10
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in Revmakx WPCal.Io – Easy Meeting Scheduler.This issue affects WPCal.Io – Easy Meeting Scheduler: from n/a through 0.9.5.8.
Source: Patchstack
Max CVSS
5.4
EPSS Score
0.04%
Published
2024-05-10
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in ThemeFuse Unyson.This issue affects Unyson: from n/a through 2.7.29.
Source: Patchstack
Max CVSS
5.4
EPSS Score
0.04%
Published
2024-05-10
Updated
2024-05-14
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through 2.1.8.
Source: Patchstack
Max CVSS
5.3
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VeronaLabs WP SMS allows Stored XSS.This issue affects WP SMS: from n/a through 6.5.1.
Source: Patchstack
Max CVSS
5.9
EPSS Score
0.04%
Published
2024-05-13
Updated
2024-05-14
Cross-Site Request Forgery (CSRF) vulnerability in Extend Themes EmpowerWP.This issue affects EmpowerWP: from n/a through 1.0.21.
Source: Patchstack
Max CVSS
4.3
EPSS Score
0.04%
Published
2024-05-17
Updated
2024-05-17
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samuel Marshall JCH Optimize.This issue affects JCH Optimize: from n/a through 4.2.0.
Source: Patchstack
Max CVSS
4.3
EPSS Score
0.04%
Published
2024-05-16
Updated
2024-05-17
Cross-Site Request Forgery (CSRF) vulnerability in CodeBard Fast Custom Social Share by CodeBard.This issue affects Fast Custom Social Share by CodeBard: from n/a through 1.1.2.
Source: Patchstack
Max CVSS
4.3
EPSS Score
0.04%
Published
2024-05-17
Updated
2024-05-17
Cross-Site Request Forgery (CSRF) vulnerability in Creative Motion Clearfy Cache.This issue affects Clearfy Cache: from n/a through 2.2.1.
Source: Patchstack
Max CVSS
4.3
EPSS Score
0.04%
Published
2024-05-17
Updated
2024-05-17
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webvitaly iFrame allows Stored XSS.This issue affects iFrame: from n/a through 5.0.
Source: Patchstack
Max CVSS
6.5
EPSS Score
0.04%
Published
2024-05-16
Updated
2024-05-17
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPBlockart Magazine Blocks allows Stored XSS.This issue affects Magazine Blocks: from n/a through 1.3.6.
Source: Patchstack
Max CVSS
5.9
EPSS Score
0.04%
Published
2024-05-16
Updated
2024-05-17
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!