Vulnerabilidades en wedevs

84 resultados

CVE-2024-37946MEDIUMWordPress ReCaptcha Integration for WordPress plugin <= 1.2.7 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-14339MEDIUMweMail <= 2.0.7 - Missing Authorization to Unauthenticated Form DeletionEPSS 0.3%CVE-2025-2541MEDIUMWP Project Manager <= 2.6.22 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.3%CVE-2023-3407MEDIUMSubscribe2 <= 10.40 - Cross-Site Request ForgeryEPSS 0.3%CVE-2025-58672MEDIUMWordPress WP User Frontend Plugin <= 4.1.12 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-14047MEDIUMWP User Frontend <= 4.2.4 - Missing Authorization to Unauthenticated Arbitrary Attachment DeletionEPSS 0.2%CVE-2025-8994MEDIUMWP Project Manager <= 2.6.26 - Authenticated (Subscriber+) SQL Injection via 'completed_at_operator'EPSS 0.2%CVE-2025-22649MEDIUMWordPress WP Project Manager plugin <= 2.6.22 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2023-52217MEDIUMWordPress WooCommerce Conversion Tracking plugin <= 2.0.11 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-3100MEDIUMWP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts <= 2.6.22 - Authenticated (Subscriber+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.2%CVE-2026-12079MEDIUMDokan Pro <= 5.0.4 - Authenticated (Subscriber+) SQL Injection via 'orderby' ParameterEPSS 0.2%CVE-2025-68040MEDIUMWordPress WP Project Manager plugin <= 3.0.1 - Sensitive Data Exposure vulnerabilityEPSS 0.2%CVE-2025-67546MEDIUMWordPress WP ERP plugin <= 1.16.6 - Sensitive Data Exposure vulnerabilityEPSS 0.2%CVE-2025-58673MEDIUMWordPress WP User Frontend Plugin <= 4.1.12 - Content Injection VulnerabilityEPSS 0.2%CVE-2025-12809MEDIUMdokan pro <= 4.1.3 - Missing Authorization to Unauthenticated Sensitive Information ExposureEPSS 0.2%CVE-2026-42412MEDIUMWordPress WP User Frontend plugin <= 4.3.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-2233MEDIUMUser Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration <= 4.2.8 - Missing Authorization to Unauthenticated Arbitrary Post Modification via 'post_id' ParameterEPSS 0.2%CVE-2025-12505MEDIUMweDocs <= 2.1.14 - Missing Authorization to Settings UpdateEPSS 0.2%CVE-2026-39520MEDIUMWordPress weDocs plugin <= 2.1.18 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24944MEDIUMWordPress Subscribe2 plugin <= 10.44 - Broken Access Control vulnerabilityEPSS 0.2%

← anteriorpágina 4 / 5siguiente →