|
197911
|
8.8 |
HIGH
Network
|
supportcandy
|
supportcandy
|
The SupportCandy WordPress plugin before 2.2.7 does not have CSRF check in the wpsc_tickets AJAX action, nor has any sanitisation or escaping in some of the filter fields which could allow attackers …
|
CWE-352
Origin Validation Error
|
CVE-2021-24879
|
2024-11-21 14:53 |
2022-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197912
|
6.1 |
MEDIUM
Network
|
supportcandy
|
supportcandy
|
The SupportCandy WordPress plugin before 2.2.7 does not sanitise and escape the query string before outputting it back in pages with the [wpsc_create_ticket] shortcode embed, leading to a Reflected C…
|
CWE-79
Cross-site Scripting
|
CVE-2021-24878
|
2024-11-21 14:53 |
2022-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197913
|
6.5 |
MEDIUM
Network
|
supportcandy
|
supportcandy
|
The SupportCandy WordPress plugin before 2.2.7 does not have CRSF check in its wpsc_tickets AJAX action, which could allow attackers to make a logged in admin call it and delete arbitrary tickets via…
|
CWE-352
Origin Validation Error
|
CVE-2021-24843
|
2024-11-21 14:53 |
2022-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197914
|
7.5 |
HIGH
Network
|
supportcandy
|
supportcandy
|
The SupportCandy WordPress plugin before 2.2.5 does not have authorisation and CSRF checks in its wpsc_tickets AJAX action, which could allow unauthenticated users to call it and delete arbitrary tic…
|
CWE-862
Missing Authorization
|
CVE-2021-24839
|
2024-11-21 14:53 |
2022-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197915
|
4.8 |
MEDIUM
Network
|
wpmanageninja
|
ninja_tables
|
The Ninja Tables WordPress plugin before 4.1.8 does not sanitise and escape some of its table fields, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfi…
|
-
|
CVE-2021-24900
|
2024-11-21 14:53 |
2022-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197916
|
4.3 |
MEDIUM
Network
|
bplugins
|
document_embedder
|
The Document Embedder WordPress plugin before 1.7.9 contains a AJAX action endpoint, which could allow any authenticated user, such as subscriber to enumerate the title of arbitrary private and draft…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-24868
|
2024-11-21 14:53 |
2022-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197917
|
5.3 |
MEDIUM
Network
|
bplugins
|
document_embedder
|
The Document Embedder WordPress plugin before 1.7.5 contains a REST endpoint, which could allow unauthenticated users to enumerate the title of arbitrary private and draft posts.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-24775
|
2024-11-21 14:53 |
2022-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197918
|
6.1 |
MEDIUM
Network
|
getperfectsurvey
|
perfect_survey
|
The Perfect Survey WordPress plugin through 1.5.2 does not validate and escape the X-Forwarded-For header value before outputting it in the statistic page when the Anonymize IP setting of a survey is…
|
CWE-79
Cross-site Scripting
|
CVE-2021-24765
|
2024-11-21 14:53 |
2022-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197919
|
9.6 |
CRITICAL
Network
|
welaunch
|
wordpress_gdpr\&ccpa
|
The check_privacy_settings AJAX action of the WordPress GDPR WordPress plugin before 1.9.26, available to both unauthenticated and authenticated users, responds with JSON data without an "application…
|
CWE-79
Cross-site Scripting
|
CVE-2021-24814
|
2024-11-21 14:53 |
2022-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197920
|
6.1 |
MEDIUM
Network
|
getperfectsurvey
|
perfect_survey
|
The Perfect Survey WordPress plugin before 1.5.2 does not sanitise and escape multiple parameters (id and filters[session_id] of single_statistics page, type and message of importexport page) before …
|
CWE-79
Cross-site Scripting
|
CVE-2021-24764
|
2024-11-21 14:53 |
2022-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
