Vulnerabilidades en OceanWP

23 resultados

CVE-2025-3472MEDIUMOcean Extra <= 2.4.6 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 1.7%CVE-2023-23700HIGHWordPress OceanWP theme <= 3.4.1 - Authenticated Local File Inclusion vulnerabilityEPSS 0.7%CVE-2024-3167MEDIUMOcean Extra <= 2.2.6 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2020-36760MEDIUMOcean Extra <=1.6.5 - Cross-Site Request Forgery BypassEPSS 0.5%CVE-2024-1277MEDIUMOcean Extra <= 2.2.4 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2022-4974MEDIUMFreemius SDK <= 2.4.2 - Missing Authorization ChecksEPSS 0.4%CVE-2024-2476MEDIUMOceanWP <= 3.5.4 - Missing Authorization to Sensitive Information Exposure via Limited Local File InclusionEPSS 0.4%CVE-2023-24399MEDIUMWordPress Ocean Extra Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2023-23891MEDIUMWordPress Ocean Extra Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2024-5531MEDIUMOcean Extra <= 2.2.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Flickr WidgetEPSS 0.3%CVE-2024-37489MEDIUMWordPress Ocean Extra plugin <= 2.2.9 - Authenticated Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2026-34903MEDIUMWordPress Ocean Extra plugin <= 2.5.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-7500MEDIUMOcean Social Sharing <= 2.2.1 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-5647MEDIUMMultiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript LibraryEPSS 0.3%CVE-2023-49164MEDIUMWordPress Ocean Extra Plugin <= 2.2.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-13362MEDIUMFreemius <= 2.10.1 - Reflected DOM-Based Cross-Site Scripting via url ParameterEPSS 0.3%CVE-2025-3457MEDIUMOcean Extra <= 2.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortcodeEPSS 0.2%CVE-2025-3458MEDIUMOcean Extra <= 2.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'ocean_gallery_id'EPSS 0.2%CVE-2025-9499MEDIUMOcean Extra <= 2.4.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via oceanwp_library ShortcodeEPSS 0.2%CVE-2025-5524MEDIUMOceanWP <= 4.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Select HTML TagEPSS 0.2%

← anteriorpágina 1 / 2siguiente →