4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilidades em wpdevart\",\"url\":\"https://vexday.io/pt/vendor/wpdevart\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":39},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Início\",\"item\":\"https://vexday.io/pt\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Tecnologias\",\"item\":\"https://vexday.io/pt/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"wpdevart\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/pt","children":"Início"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/pt/vendors","children":"Tecnologias"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"wpdevart"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilidades em"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"wpdevart"}]]}],["$","span",null,{"className":"t","children":["39"," ","resultados"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2023-49741",{"className":"item","href":"/pt/cve/CVE-2023-49741","children":[["$","span",null,{"className":"cid","children":"CVE-2023-49741"}],["$","span",null,{"className":"sevtag LOW","children":"LOW"}],["$","span",null,{"className":"tt2","children":"WordPress Coming soon and Maintenance mode plugin <= 3.7.3 - IP Filtering Bypass vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2023-46075",{"className":"item","href":"/pt/cve/CVE-2023-46075","children":[["$","span",null,{"className":"cid","children":"CVE-2023-46075"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Contact Form Builder, Contact Widget Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2023-45630",{"className":"item","href":"/pt/cve/CVE-2023-45630","children":[["$","span",null,{"className":"cid","children":"CVE-2023-45630"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-7355",{"className":"item","href":"/pt/cve/CVE-2024-7355","children":[["$","span",null,{"className":"cid","children":"CVE-2024-7355"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Organization chart <= 1.5.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting via title_input and node_description Parameters"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2023-45631",{"className":"item","href":"/pt/cve/CVE-2023-45631","children":[["$","span",null,{"className":"cid","children":"CVE-2023-45631"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-24719",{"className":"item","href":"/pt/cve/CVE-2025-24719","children":[["$","span",null,{"className":"cid","children":"CVE-2025-24719"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Widget Countdown plugin <= 2.7.1 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2023-24384",{"className":"item","href":"/pt/cve/CVE-2023-24384","children":[["$","span",null,{"className":"cid","children":"CVE-2023-24384"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Organization chart Plugin <= 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-37542",{"className":"item","href":"/pt/cve/CVE-2024-37542","children":[["$","span",null,{"className":"cid","children":"CVE-2024-37542"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2023-24388",{"className":"item","href":"/pt/cve/CVE-2023-24388","children":[["$","span",null,{"className":"cid","children":"CVE-2023-24388"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Booking calendar, Appointment Booking System Plugin <= 3.2.3 is vulnerable to Cross Site Request Forgery (CSRF)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2023-23983",{"className":"item","href":"/pt/cve/CVE-2023-23983","children":[["$","span",null,{"className":"cid","children":"CVE-2023-23983"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Responsive Vertical Icon Menu Plugin <= 1.5.8 is vulnerable to Cross Site Request Forgery (CSRF)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-2537",{"className":"item","href":"/pt/cve/CVE-2025-2537","children":[["$","span",null,{"className":"cid","children":"CVE-2025-2537"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via ThickBox JavaScript Library"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-47443",{"className":"item","href":"/pt/cve/CVE-2025-47443","children":[["$","span",null,{"className":"cid","children":"CVE-2025-47443"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Widget Countdown plugin <= 2.7.4 - Cross Site Scripting (XSS) Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-67574",{"className":"item","href":"/pt/cve/CVE-2025-67574","children":[["$","span",null,{"className":"cid","children":"CVE-2025-67574"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Booking calendar, Appointment Booking System plugin <= 3.2.30 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2022-50959",{"className":"item","href":"/pt/cve/CVE-2022-50959","children":[["$","span",null,{"className":"cid","children":"CVE-2022-50959"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Contact Form Builder 1.6.1 Cross-Site Scripting via code_generator.php"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-14555",{"className":"item","href":"/pt/cve/CVE-2025-14555","children":[["$","span",null,{"className":"cid","children":"CVE-2025-14555"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"Countdown Timer - Widget Countdown <= 2.7.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2023-45629",{"className":"item","href":"/pt/cve/CVE-2023-45629","children":[["$","span",null,{"className":"cid","children":"CVE-2023-45629"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.3 is vulnerable to Cross Site Request Forgery (CSRF)"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2026-25435",{"className":"item","href":"/pt/cve/CVE-2026-25435","children":[["$","span",null,{"className":"cid","children":"CVE-2026-25435"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Booking calendar, Appointment Booking System plugin <= 3.2.36 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-62886",{"className":"item","href":"/pt/cve/CVE-2025-62886","children":[["$","span",null,{"className":"cid","children":"CVE-2025-62886"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Pricing Table builder plugin <= 1.5.3 - Cross Site Request Forgery (CSRF) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.1%"}]]}],false]}]]}],["$","$La","CVE-2026-24597",{"className":"item","href":"/pt/cve/CVE-2026-24597","children":[["$","span",null,{"className":"cid","children":"CVE-2026-24597"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Organization chart plugin <= 1.7.5 - Cross Site Request Forgery (CSRF) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.1%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","$La",null,{"href":"?page=1","children":"← anterior"}],["$","span",null,{"className":"pgnum","children":["página"," ","2"," / ","2"]}],["$","span",null,{"className":"off","children":"próxima →"}]]}]]}]