Vulnerabilidades em CodePeople
73 resultadosCVE-2023-6446MEDIUMCalculated Fields Form <= 1.2.40 - Authenticated (Admin+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2025-24727MEDIUMWordPress Contact Form to Email Plugin <= 1.3.52 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-24723MEDIUMWordPress Booking Calendar Contact Form Plugin <= 1.2.55 - Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2026-32483MEDIUMWordPress Contact Form Email plugin <= 1.3.63 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-51517MEDIUMWordPress Calculated Fields Form Plugin <= 1.2.28 is vulnerable to Open RedirectionEPSS 0.3%CVE-2024-47297HIGHWordPress Polls CP plugin <= 1.0.74 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-58009LOWWordPress CP Multi View Event Calendar plugin <= 1.4.35 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-12111MEDIUMAppointment Booking Calendar <= 1.4.01 - Authenticated (Contributor+) Sensitive Information Exposure via 'id' ParameterEPSS 0.3%CVE-2025-47472MEDIUMWordPress Music Player for WooCommerce plugin <= 1.5.1 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-13318MEDIUMBooking Calendar Contact Form <= 1.2.60 - Missing Authorization to Unauthenticated Arbitrary Booking Confirmation via 'dex_bccf_ipn' ParameterEPSS 0.3%CVE-2026-1083MEDIUMAppointment Hour Booking – Booking Calendar <= 1.5.60 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Min/Max Length' Field ConfigurationEPSS 0.3%CVE-2026-0684MEDIUMCP Image Store with Slideshow <= 1.1.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Product ImportEPSS 0.3%CVE-2025-68569MEDIUMWordPress WP Time Slots Booking Form plugin <= 1.2.39 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-25368MEDIUMWordPress Calculated Fields Form plugin <= 5.4.4.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-13758MEDIUMCP Contact Form with PayPal <= 1.3.52 - Cross-Site Request ForgeryEPSS 0.2%CVE-2025-13317MEDIUMAppointment Booking Calendar <= 1.3.96 - Missing Authorization to Arbitrary Booking Confirmation via 'cpabc_ipncheck' ParameterEPSS 0.2%CVE-2025-68850HIGHWordPress Sell Downloads plugin <= 1.1.12 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-24626HIGHWordPress Music Store – WordPress eCommerce Plugin <= 1.1.19 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-3986MEDIUMCalculated Fields Form <= 5.4.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Form SettingsEPSS 0.2%CVE-2026-32433HIGHWordPress CP Contact Form with Paypal plugin <= 1.3.61 - SQL Injection vulnerabilityEPSS 0.2%