Kalenderwoche 50
Plugins
17.12.2021 Crisp Live Chat < 0.32 – CSRF to Stored Cross-Site Scripting
16.12.2021 Landing Page Builder < 1.4.9.6 – Authenticated Reflected Cross-Site Scripting (XSS)
16.12.2021 Smash Balloon Social Post Feed < 4.1.1 – Authenticated Reflected Cross-Site Scripting (XSS)
15.12.2021 Image Hover Effects Ultimate < 9.7.0 – Unauthenticated Arbitrary Option Update
15.12.2021 .htaccess Redirect <= 0.3.1 – Reflected Cross-Site Scripting
15.12.2021 Parsian Bank Gateway for Woocommerce <= 1.0 – Reflected Cross-Site Scripting
15.12.2021 Real WYSIWYG <= 0.0.2 – Reflected Cross-Site Scripting
15.12.2021 Link List Manager <= 1.0 – Reflected Cross-Site Scripting
15.12.2021 Simple Image Gallery <= 1.0.6 – Reflected Cross-Site Scripting
15.12.2021 WooCommerce EnvioPack <= 1.2 – Reflected Cross-Site Scripting
15.12.2021 Magic Post Voice <= 1.2 – Reflected Cross-Site Scripting
15.12.2021 H5P CSS Editor <= 1.0 – Reflected Cross-Site Scripting
15.12.2021 duoFAQ <= 1.4.8 – Reflected Cross-Site Scripting
15.12.2021 True Ranker < 2.2.4 – Unauthenticated Arbitrary File Access via Path Traversal
15.12.2021 WooCommerce myghpay Payment Gateway <= 3.0 – Reflected Cross-Site Scripting
14.12.2021 All In One SEO < 4.1.5.3 – Authenticated SQL Injection
14.12.2021 All In One SEO < 4.1.5.3 – Authenticated Privilege Escalation
14.12.2021 WP Booking System – Booking Calendar < 2.0.15 – Authenticated Reflected Cross-Site Scripting (XSS)
14.12.2021 Modern Events Calendar Lite < 6.2.0 – Subscriber+ Category Add Leading to Stored XSS
13.12.2021 WOOCS < 1.3.7.3 – Reflected Cross-Site Scripting
13.12.2021 The Plus Addons for Elementor Pro < 5.0.7 – Sensitive Data Disclosure
13.12.2021 The Plus Addons for Elementor Pro < 5.0.7 – Unauthenticated SQL Injection
13.12.2021 Lets Box < 1.13.3 – Reflected Cross-Site Scripting
13.12.2021 Share One Drive < 1.15.3 – Reflected Cross-Site Scripting
13.12.2021 Out of the Box < 1.20.3 – Reflected Cross-Site Scripting
13.12.2021 Use Your Drive < 1.18.3 – Reflected Cross-Site Scripting
13.12.2021 Comment Engine Pro <= 1.0 – Editor+ Stored Cross-Site Scripting
13.12.2021 Fathom Analytics < 3.0.5 – Admin+ Stored Cross-Site Scripting
Schreibe einen Kommentar