4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilities in supsystic\",\"url\":\"https://vexday.io/en/vendor/supsystic\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":36},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https://vexday.io/en\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Technologies\",\"item\":\"https://vexday.io/en/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"supsystic\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/en","children":"Home"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/en/vendors","children":"Technologies"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"supsystic"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilities in"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"supsystic"}]]}],["$","span",null,{"className":"t","children":["36"," ","results"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2021-24275",{"className":"item","href":"/en/cve/CVE-2021-24275","children":[["$","span",null,{"className":"cid","children":"CVE-2021-24275"}],["$","span",null,{"className":"sevtag ","children":"—"}],["$","span",null,{"className":"tt2","children":"Popup by Supsystic < 1.10.5 - Reflected Cross-Site scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"18.2%"}]]}],false]}]]}],["$","$La","CVE-2021-24274",{"className":"item","href":"/en/cve/CVE-2021-24274","children":[["$","span",null,{"className":"cid","children":"CVE-2021-24274"}],["$","span",null,{"className":"sevtag ","children":"—"}],["$","span",null,{"className":"tt2","children":"Ultimate Maps by Supsystic < 1.2.5 - Reflected Cross-Site scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"17.6%"}]]}],false]}]]}],["$","$La","CVE-2021-24276",{"className":"item","href":"/en/cve/CVE-2021-24276","children":[["$","span",null,{"className":"cid","children":"CVE-2021-24276"}],["$","span",null,{"className":"sevtag ","children":"—"}],["$","span",null,{"className":"tt2","children":"Contact Form by Supsystic < 1.7.15 - Reflected Cross-Site scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"16.1%"}]]}],false]}]]}],["$","$La","CVE-2024-48042",{"className":"item","href":"/en/cve/CVE-2024-48042","children":[["$","span",null,{"className":"cid","children":"CVE-2024-48042"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress Contact Form by Supsystic plugin <= 1.7.28 - Remote Code Execution (RCE) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"1.1%"}]]}],false]}]]}],["$","$La","CVE-2024-52434",{"className":"item","href":"/en/cve/CVE-2024-52434","children":[["$","span",null,{"className":"cid","children":"CVE-2024-52434"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress Popup by Supsystic plugin <= 1.10.29 - Remote Code Execution (RCE) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"1.1%"}]]}],false]}]]}],["$","$La","CVE-2022-33960",{"className":"item","href":"/en/cve/CVE-2022-33960","children":[["$","span",null,{"className":"cid","children":"CVE-2022-33960"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Social Share Buttons by Supsystic plugin <= 2.2.3 - Multiple Authenticated SQL Injection (SQLi) vulnerabilities"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.8%"}]]}],false]}]]}],["$","$La","CVE-2022-27235",{"className":"item","href":"/en/cve/CVE-2022-27235","children":[["$","span",null,{"className":"cid","children":"CVE-2022-27235"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Social Share Buttons by Supsystic plugin <= 2.2.3 - Multiple Broken Access Control vulnerabilities"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2017-20065",{"className":"item","href":"/en/cve/CVE-2017-20065","children":[["$","span",null,{"className":"cid","children":"CVE-2017-20065"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Supsystic Popup Plugin cross-site request forgery"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2020-37246",{"className":"item","href":"/en/cve/CVE-2020-37246","children":[["$","span",null,{"className":"cid","children":"CVE-2020-37246"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Plugin Supsystic Backup 2.3.9 Local File Inclusion"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2023-51353",{"className":"item","href":"/en/cve/CVE-2023-51353","children":[["$","span",null,{"className":"cid","children":"CVE-2023-51353"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Popup by Supsystic plugin <= 1.10.19 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2024-30237",{"className":"item","href":"/en/cve/CVE-2024-30237","children":[["$","span",null,{"className":"cid","children":"CVE-2024-30237"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Slider by Supsystic plugin <= 1.8.10 - SQL Injection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2023-25043",{"className":"item","href":"/en/cve/CVE-2023-25043","children":[["$","span",null,{"className":"cid","children":"CVE-2023-25043"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Data Tables Generator by Supsystic Plugin <= 1.10.25 is vulnerable to Broken Access Control"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2020-37245",{"className":"item","href":"/en/cve/CVE-2020-37245","children":[["$","span",null,{"className":"cid","children":"CVE-2020-37245"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Plugin Supsystic Digital Publications 1.6.9 Path Traversal XSS"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2025-32138",{"className":"item","href":"/en/cve/CVE-2025-32138","children":[["$","span",null,{"className":"cid","children":"CVE-2025-32138"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Easy Google Maps plugin <= 1.11.18 - XML External Entity vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-33910",{"className":"item","href":"/en/cve/CVE-2024-33910","children":[["$","span",null,{"className":"cid","children":"CVE-2024-33910"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Digital Publications by Supsystic plugin <= 1.7.7 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2023-49191",{"className":"item","href":"/en/cve/CVE-2023-49191","children":[["$","span",null,{"className":"cid","children":"CVE-2023-49191"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress GDPR Cookie Consent by Supsystic Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-32829",{"className":"item","href":"/en/cve/CVE-2024-32829","children":[["$","span",null,{"className":"cid","children":"CVE-2024-32829"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Data Tables Generator by Supsystic plugin <= 1.10.31 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2021-36891",{"className":"item","href":"/en/cve/CVE-2021-36891","children":[["$","span",null,{"className":"cid","children":"CVE-2021-36891"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Photo Gallery by Supsystic plugin <= 1.15.5 - Cross-Site Request Forgery (CSRF) leading to Plugin Settings Change"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-31421",{"className":"item","href":"/en/cve/CVE-2024-31421","children":[["$","span",null,{"className":"cid","children":"CVE-2024-31421"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Popup by Supsystic plugin <= 1.10.27 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}],["$","$La","CVE-2024-30448",{"className":"item","href":"/en/cve/CVE-2024-30448","children":[["$","span",null,{"className":"cid","children":"CVE-2024-30448"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Slider by Supsystic plugin <= 1.8.10 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.4%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","span",null,{"className":"off","children":"← previous"}],["$","span",null,{"className":"pgnum","children":["page"," ","1"," / ","2"]}],["$","$La",null,{"href":"?page=2","children":"next →"}]]}]]}]