Kalenderwoche 45
Plugins
11.11.2021 Like Button Rating < 2.6.38 – Unauthorised Vote Export to Email & IP Addresses Disclosure
11.11.2021 Caldera forms < 1.9.5 – Admin+ Stored Cross-Site Scripting
11.11.2021 Starter Templates < 2.7.1 – Contributor+ Block Import to Stored XSS
11.11.2021 Contact Form Email < 1.3.25 – Admin+ Stored Cross-Site Scripting
10.11.2021 Booking Package < 1.5.11 – Reflected Cross-Site Scripting
09.11.2021 LearnPress < 4.1.4 – Admin+ SQL Injection
09.11.2021 Get Custom Field Values < 4.0.1 – Contributor+ Stored Cross-Site Scripting
09.11.2021 Get Custom Field Values < 4.0 – Contributors+ Arbitrary Post Metadata Access
08.11.2021 Registrations for the Events Calendar < 2.7.6 – Unauthenticated SQL Injection
08.11.2021 LoginWP < 3.0.0.5 – Reflected Cross-Site Scripting
08.11.2021 WooCommerce Currency Switcher < 1.3.7.1 – Reflected Cross-Site Scripting
08.11.2021 Secure Copy Content Protection and Content Locking < 2.8.2 – Unauthenticated SQL Injection
08.11.2021 Bookly < 20.3.1 – Staff Member Stored Cross-Site Scripting
08.11.2021 Email Log < 2.4.8 – Reflected Cross-Site Scripting
08.11.2021 Tawk.to Live Chat < 0.6.0 – Subscriber+ Visitor Monitoring & Chat Removal
08.11.2021 WP Data Access < 5.0.0 – Admin+ SQL Injection
08.11.2021 PDF.js Viewer < 2.0.2 – Contributor+ Stored Cross-Site Scripting
08.11.2021 Backup and Restore <= 1.0.3 – Admin+ Arbitrary File Deletion
WordPress
10.11.2021 WordPress < 5.8.2 – Expired DST Root CA X3 Certificate
Schreibe einen Kommentar