Vulnerabilidades em premio

22 resultados

CVE-2024-2024HIGHFolders Pro <= 3.0.2 - Authenticated(Author+) Arbitrary File Upload via handle_folders_file_uploadEPSS 3.3%CVE-2024-11429HIGHFree Responsive Testimonials, Social Proof Reviews, and Customer Reviews – Stars Testimonials <= 3.3.3 - Authenticated (Contributor+) Local File InclusionEPSS 0.7%CVE-2024-2023MEDIUMFolders <= 3.0 and Folders Pro <= 3.0.2 - Directory Traversal via handle_folders_file_uploadEPSS 0.7%CVE-2023-40204CRITICALWordPress Folders Plugin <= 2.9.2 is vulnerable to Arbitrary File UploadEPSS 0.7%CVE-2021-36846MEDIUMWordPress Chaty plugin <= 2.8.3 - Authenticated Stored Cross-Site Scripting (XSS) vulnerabilityEPSS 0.6%CVE-2024-12627HIGHCoupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing Authorization to Authenticated (Contributor+) PHP Object InjectionEPSS 0.5%CVE-2023-51362MEDIUMWordPress myStickyElements plugin <= 2.1.3 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-25019HIGHWordPress Chaty Plugin <= 3.0.9 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2023-47759MEDIUMWordPress Chaty plugin <= 3.1.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-3868MEDIUMFolders Pro <= 3.0.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via User First Name and Last NameEPSS 0.4%CVE-2024-7317MEDIUMFolders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager <= 3.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.4%CVE-2026-3657HIGHMy Sticky Bar <= 2.8.6 - Unauthenticated SQL Injection via 'stickymenu_contact_lead_form' ActionEPSS 0.3%CVE-2024-8989MEDIUMStars Testimonials <= 3.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via stars_testimonials ShortcodeEPSS 0.3%CVE-2026-27370HIGHWordPress Chaty plugin <= 3.5.1 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2025-14428MEDIUMMy Sticky Elements <= 2.3.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Bulk Lead DeletionEPSS 0.3%CVE-2025-1450MEDIUMFloating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button, WhatsApp – Chaty <= 3.3.5 - Authenticated (Contributor+) DOM-Based Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-68995MEDIUMWordPress My Sticky Elements plugin <= 2.3.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-12204MEDIUMCoupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing AuthorizationEPSS 0.2%CVE-2023-7048LOWMy Sticky Bar <= 2.6.6 - Cross-Site Request Forgery to Sensitive Information ExposureEPSS 0.2%CVE-2025-12971MEDIUMFolders <= 3.1.5 - Incorrect Authorization to Authenticated (Contributor+) Folder Content ManipulationEPSS 0.2%

← anteriorpágina 1 / 2próxima →