Exposição de SiteOrigin Widgets Bundle
WordPress plugins13
score de exposição
12.544
sites usam
0
em exploração
0
críticos
CVEs
11 resultadosCVE-2023-6295—so-widgets-bundle < 1.51.0 - Admin+ Local File InclusionEPSS 1.0%CVE-2024-54268MEDIUMWordPress SiteOrigin Widgets Bundle plugin <= 1.64.0 - Broken Access Control vulnerabilityEPSS 0.6%CVE-2024-1070MEDIUMSiteOrigin Widgets Bundle <= 1.58.2 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2024-0961MEDIUMSiteOrigin Widgets Bundle <= 1.58.1 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2024-1723MEDIUMSiteOrigin Widgets Bundle <= 1.58.7 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2024-1058MEDIUMSiteOrigin Widgets Bundle <= 1.58.3 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.4%CVE-2024-5901MEDIUMSiteOrigin Widgets Bundle <= 1.62.2 - Authenticated (Contributor+) Stored Cross-Site Scripting in Image Grid widgetEPSS 0.4%CVE-2024-4362MEDIUMSiteOrigin Widgets Bundle <= 1.60.0 - - Authenticated (Contributor+) Stored Cross-Site Scripting via 'siteorigin_widget' ShortcodeEPSS 0.4%CVE-2024-5090MEDIUMSiteOrigin Widgets Bundle <= 1.61.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via SiteOrigin Blog WidgetEPSS 0.3%CVE-2026-2127MEDIUMSiteOrigin Widgets Bundle <= 1.70.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Shortcode ExecutionEPSS 0.3%CVE-2025-5585MEDIUMSiteOrigin Widgets Bundle <= 1.68.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via `data-url` DOM Element AttributeEPSS 0.2%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →