Vulnerabilities in totalsoft
10 resultsCVE-2024-9022HIGHTS Poll – Survey, Versus Poll, Image Poll, Video Poll <= 2.4.0 - Authenticated (Administrator+) SQL Injection via orderby ParameterEPSS 0.9%CVE-2022-38067MEDIUMWordPress Event Calendar – Calendar plugin <= 1.4.6 - Unauthenticated Event Deletion vulnerabilityEPSS 0.5%CVE-2024-10247HIGHYouTube Gallery and Vimeo Gallery Plugin <= 2.4.2 - Authenticated (Administrator+) SQL InjectionEPSS 0.5%CVE-2022-36390MEDIUMWordPress Event Calendar – Calendar plugin <= 1.4.6 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerabilityEPSS 0.5%CVE-2025-3470MEDIUMTS Poll – Survey, Versus Poll, Image Poll, Video Poll <= 2.4.6 - Authenticated (Administrator+) SQL Injection via 's' ParameterEPSS 0.3%CVE-2024-9769MEDIUMVideo Gallery <= 2.4.1 - Authenticated (Administrator+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2025-22632HIGHWordPress WooCommerce Pricing – Product Pricing plugin <= 1.0.9 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-62098MEDIUMWordPress Portfolio Gallery plugin <= 1.4.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25428MEDIUMWordPress TS Poll plugin <= 2.5.5 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.2%CVE-2025-68588MEDIUMWordPress TS Poll plugin <= 2.5.5 - Broken Access Control vulnerabilityEPSS 0.2%