Vulnerabilidades en davidanderson
16 resultadosCVE-2026-10795HIGHUpdraftPlus: WP Backup & Migration Plugin <= 1.26.4 - Unauthenticated Authentication Bypass via UpdraftCentral udrpcEPSS 3.0%CVE-2024-6828HIGHRedux Framework 4.4.12 - 4.4.17 - Unauthenticated JSON File Upload to Stored Cross-Site ScriptingEPSS 1.0%CVE-2026-7252HIGHWP-Optimize <= 4.5.2 - Authenticated (Author+) Arbitrary File Deletion via 'original-file' Post MetaEPSS 0.9%CVE-2024-10957HIGHUpdraftPlus: WP Backup & Migration Plugin 1.23.8 - 1.24.11 - Unauthenticated PHP Object InjectionEPSS 0.7%CVE-2024-1037MEDIUMAll-In-One Security (AIOS) – Security and Firewall <= 5.2.5 - Reflected Cross-Site ScriptingEPSS 0.6%CVE-2026-2712MEDIUMWP-Optimize <= 4.5.0 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update and Image ManipulationEPSS 0.4%CVE-2022-4974MEDIUMFreemius SDK <= 2.4.2 - Missing Authorization ChecksEPSS 0.4%CVE-2025-0215MEDIUMUpdraftPlus - Backup/Restore <= 1.24.12 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2024-4193MEDIUMTestimonial Slider <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.4%CVE-2026-8438HIGHAll-In-One Security (AIOS) <= 5.4.7 - Unauthenticated Stored Cross-Site Scripting via REST API Request PathEPSS 0.3%CVE-2024-13857MEDIUMWPGet API <= 2.2.10 - Authenticated (Administrator+) Server-Side Request ForgeryEPSS 0.3%CVE-2024-0657MEDIUMInternal Link Juicer <= 2.23.4 - Authenticated (Admin+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2025-9488MEDIUMRedux Framework <= 4.5.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via data ParameterEPSS 0.3%CVE-2024-13362MEDIUMFreemius <= 2.10.1 - Reflected DOM-Based Cross-Site Scripting via url ParameterEPSS 0.3%CVE-2023-5982MEDIUMUpdraftPlus <= 1.23.10 - Cross-Site Request Forgery to Google Drive Storage UpdateEPSS 0.2%CVE-2026-7660MEDIUMEasy Updates Manager <= 9.0.20 - Reflected Cross-Site Scripting via 'paged' ParameterEPSS 0.2%