Vulnerabilidades em BestWebSoft
29 resultadosCVE-2017-2171—Cross-site scripting vulnerability in Captcha prior to version 4.3.0, Car Rental prior to version 1.0.5, Contact Form Multi prior to versionEPSS 0.9%CVE-2017-20055LOWBestWebSoft Contact Form Plugin Stored cross site scritingEPSS 0.8%CVE-2023-29096HIGHWordPress Contact Form to DB by BestWebSoft Plugin <= 1.7.0 is vulnerable to SQL InjectionEPSS 0.7%CVE-2025-9950MEDIUMError Log Viewer by BestWebSoft <= 1.1.6 - Authenticated (Administrator+) Arbitrary File ReadEPSS 0.7%CVE-2024-13906HIGHGallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress <= 4.7.3 - Authenticated (Administrator+) PHP Object InjectionEPSS 0.7%CVE-2014-125102MEDIUMBestwebsoft Relevant Plugin Thumbnail information disclosureEPSS 0.6%CVE-2014-125103LOWBestWebSoft Twitter Plugin twitter.php twttr_settings_page cross site scriptingEPSS 0.6%CVE-2023-36508HIGHWordPress Contact Form to DB by BestWebSoft Plugin <= 1.7.1 is vulnerable to SQL InjectionEPSS 0.6%CVE-2014-125095LOWBestWebSoft Contact Form Plugin bws_menu.php bws_add_menu_render cross site scriptingEPSS 0.5%CVE-2014-125100LOWBestWebSoft Job Board Plugin cross site scriptingEPSS 0.5%CVE-2013-10022LOWBestWebSoft Contact Form Plugin contact_form.php cntctfrm_check_form cross site scriptingEPSS 0.5%CVE-2024-2200MEDIUMContact Form by BestWebSoft <= 4.2.8 - Reflected Cross-Site Scripting via cntctfrm_contact_subjectEPSS 0.5%CVE-2023-36527MEDIUMWordPress Post to CSV by BestWebSoft Plugin <= 1.4.0 is vulnerable to CSV InjectionEPSS 0.5%CVE-2024-2198MEDIUMContact Form by BestWebSoft <= 4.2.8 - Reflected Cross-Site Scripting via cntctfrm_contact_addressEPSS 0.5%CVE-2014-125097LOWBestWebSoft Facebook Like Button facebook-button-plugin.php fcbkbttn_settings_page cross site scriptingEPSS 0.5%CVE-2023-4469MEDIUMProfile Extra Fields by BestWebSoft <= 1.2.7 - Missing Authorization to Sensitive Information ExposureEPSS 0.5%CVE-2024-35678HIGHWordPress Contact Form to DB by BestWebSoft plugin <= 1.7.2 - SQL Injection vulnerabilityEPSS 0.4%CVE-2012-10015MEDIUMBestWebSoft Twitter Plugin Settings Page twitter.php twttr_settings_page cross-site request forgeryEPSS 0.4%CVE-2024-30439HIGHWordPress Limit Attempts by BestWebSoft plugin <= 1.2.9 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2014-125109LOWBestWebSoft Portfolio Plugin bws_menu.php bws_add_menu_render cross site scriptingEPSS 0.4%