CVE Catalog

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the ThePerfectWedding.nl Widget plugin for WordPress, affecting all versions through 2.8. The vulnerability arises from inadequate nonce validation in the 'update_option' function, allowing unauthenticated attackers to manipulate the 'tpwKey' option. This can be achieved by injecting stored cross-site scripting through a forged request, provided the attacker can persuade a site administrator to click a link or perform a similar action.

A PHP Object Injection vulnerability has been identified in the Compare Products for WooCommerce plugin for WordPress, affecting all versions through 3.2.1. The vulnerability arises from the deserialization of untrusted data in the 'woo_compare_list' cookie, allowing unauthenticated attackers to inject PHP objects. While the vulnerable plugin does not have a known payload execution chain, such a chain could potentially be exploited if an additional plugin or theme on the target site facilitates it, possibly leading to arbitrary file deletion, sensitive data exposure, or code execution.

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the ViewMedica 9 plugin for WordPress, affecting all versions through 1.4.15. The vulnerability arises from inadequate nonce validation, allowing unauthenticated attackers to inject malicious scripts by tricking a site administrator into clicking a link.

A reflected cross-site scripting vulnerability has been identified in the Infility Global plugin for WordPress, affecting all versions through 2.9.8. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if a user is tricked into clicking a link.

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Simple Add Pages or Posts plugin for WordPress, affecting all versions through 2.0.0. The vulnerability arises from inadequate nonce validation, allowing unauthenticated attackers to manipulate settings and inject harmful web scripts by tricking a site administrator into clicking a link.

A privilege escalation vulnerability exists in the PayU CommercePro Plugin for WordPress, affecting all versions through 3.8.3. The vulnerability arises because the REST API endpoints '/wp-json/payu/v1/generate-user-token' and '/wp-json/payu/v1/get-shipping-cost' do not adequately verify user identity before assigning user IDs and authentication cookies. This flaw allows unauthenticated attackers to create new administrative accounts.

A reflected cross-site scripting vulnerability has been identified in the Simple Video Management System plugin for WordPress, affecting all versions through 1.0.4. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if a user is tricked into clicking a link.

A vulnerability exists in the SEO LAT Auto Post plugin for WordPress, all versions through 2.2.1, allowing file overwrite due to a lack of proper capability checks on the remote_update AJAX action. This flaw enables unauthenticated attackers to overwrite the seo-beginner-auto-post.php file, potentially leading to remote code execution.

A reflected cross-site scripting vulnerability has been identified in the WooCommerce HSS Extension for Streaming Video plugin for WordPress, affecting all versions through 3.31. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts into pages. These scripts could be executed if a user is tricked into clicking a link.

A stored cross-site scripting vulnerability has been identified in the Toggles Shortcode and Widget plugin for WordPress, affecting all versions through 1.14. The issue arises from inadequate input sanitization and output escaping, allowing authenticated attackers with administrator-level access to inject arbitrary scripts into pages. These scripts are executed when users access the affected pages. This vulnerability is present only in multi-site installations where the unfiltered_html option is disabled.

A vulnerability exists in the WordLift SEO Schema plugin for WordPress, in all versions through 3.54.0. The issue arises from a lack of proper capability checks on the 'wl_config_plugin' AJAX action, allowing unauthorized access. This vulnerability enables unauthenticated attackers to modify the plugin's settings.

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the ViewMedica 9 plugin for WordPress, affecting all versions through 1.4.15. The vulnerability arises from inadequate nonce validation on the 'Viewmedica-Admin' page, allowing unauthenticated attackers to inject arbitrary SQL queries. Exploitation requires tricking a site administrator into clicking a link that initiates the forged request.

A vulnerability allowing information exposure has been identified in the Optimize Your Campaigns – Google Shopping – Google Ads – Google Adwords plugin for WordPress, affecting all versions through 3.1. The issue arises because the file print_php_information.php is publicly accessible, enabling unauthenticated attackers to retrieve sensitive configuration data that could be used in subsequent attacks.

A vulnerability exists in the Popup – MailChimp, GetResponse and ActiveCampaign Integrations plugin for WordPress, in all versions through 3.2.6. The issue arises from a lack of proper capability checks on the 'upc_delete_db_data' AJAX action, allowing unauthenticated attackers to delete database data associated with the plugin.

A SQL injection vulnerability has been identified in the Popup – MailChimp, GetResponse and ActiveCampaign Integrations plugin for WordPress, affecting all versions through 3.2.6. The vulnerability arises from inadequate escaping of user-supplied data in the 'id' parameter of the 'upc_delete_db_record' AJAX action, coupled with a lack of proper preparation for the existing SQL query. This flaw allows unauthenticated attackers to inject additional SQL commands into existing queries, potentially leading to the extraction of sensitive information from the database.

A reflected cross-site scripting vulnerability has been identified in the GDY Modular Content plugin for WordPress, affecting all versions through 0.9.92. The issue arises from the use of the add_query_arg function without proper escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if a user is tricked into clicking a link that contains the injected script.

A vulnerability allowing information exposure has been identified in the Elementor Addons AI Addons plugin for WordPress, specifically in versions through 2.2.1. The issue arises in the 'render' function, where inadequate restrictions allow authenticated attackers with Contributor-level access or higher to access and extract data from private or draft templates that should be off-limits.

A reflected cross-site scripting vulnerability has been identified in the SEO Keywords plugin for WordPress, affecting all versions through 1.1.3. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if a user is tricked into clicking a link that contains the malicious payload.

A reflected cross-site scripting vulnerability has been identified in the Woo Ukrposhta plugin for WordPress, affecting all versions through 1.17.11. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if a user is tricked into clicking a link or performing a similar action.

A reflected cross-site scripting vulnerability has been identified in the PayGreen Payment Gateway plugin for WordPress, affecting all versions through 1.0.26. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if the attacker successfully persuades a user to click on a manipulated link.

A reflected cross-site scripting vulnerability has been identified in the Financial Stocks & Crypto Market Data Plugin for WordPress, affecting all versions through 1.10.3. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed on pages if the attacker successfully persuades a user to perform an action, such as clicking a link.

A vulnerability exists in the Infility Global plugin for WordPress, affecting all versions through 2.9.8. The issue arises from a lack of proper capability checks in the 'infility_global_ajax' function, allowing authenticated attackers with Subscriber-level access or higher to unauthorizedly modify plugin options. This could potentially disrupt the site's functionality.

A PHP Object Injection vulnerability has been identified in the Yikes Custom Product Tabs for WooCommerce plugin for WordPress, affecting all versions through 1.8.5. The vulnerability arises from the deserialization of untrusted data in the 'yikes_woo_products_tabs' post meta parameter. This flaw allows authenticated attackers with Shop Manager-level access or higher to inject a PHP object. While the vulnerable plugin does not have a known object injection chain, such a chain could potentially be exploited if an additional plugin or theme on the target system provides one, possibly leading to arbitrary file deletion, sensitive data exposure, or code execution.

A stored cross-site scripting vulnerability has been identified in the Image Magnify plugin for WordPress, affecting all versions through 1.1. The issue arises from inadequate input sanitization and output escaping of user-supplied attributes in the 'image_magnify' shortcode. This vulnerability allows authenticated attackers with contributor-level access or higher to inject arbitrary web scripts into pages, which are executed when users access the affected pages.

A reflected cross-site scripting vulnerability has been identified in the WP Bulk SMS by SMS.to plugin for WordPress, affecting all versions through 1.0.12. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts via the 'page' parameter. These injected scripts could be executed if a user is tricked into clicking a link.

A stored cross-site scripting vulnerability has been identified in the CC Canadian Mortgage Calculator plugin for WordPress, affecting all versions through 2.1.0. The issue arises from inadequate input sanitization and output escaping of user-supplied attributes in the 'cc-mortgage-canada' shortcode. This vulnerability allows authenticated attackers with contributor-level access or higher to inject arbitrary scripts into pages, which are executed when users access the affected page.

A stored cross-site scripting vulnerability has been identified in the Common Ninja WordPress plugin, specifically in the 'commonninja' shortcode. This issue affects all versions of the plugin up to and including 1.1.0. The vulnerability arises from inadequate input sanitization and output escaping of user-supplied attributes, allowing authenticated attackers with contributor-level access or higher to inject arbitrary web scripts. These scripts are executed when a user accesses the affected page.

A reflected cross-site scripting vulnerability has been identified in the Bizapp for WooCommerce plugin for WordPress, affecting all versions through 2.0.8. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if a user is tricked into clicking a link or performing a similar action.

A reflected cross-site scripting vulnerability has been identified in the Automate Hub Free by Sperse.IO plugin for WordPress, affecting all versions through 1.7.0. The vulnerability arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts into pages. These scripts could be executed if the attacker successfully persuades a user to perform an action, such as clicking a link.

A reflected cross-site scripting vulnerability has been identified in the WC1C plugin for WordPress, affecting all versions through 0.23.0. The issue arises from the use of add_query_arg without proper escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if a user is tricked into clicking a link.

A reflected cross-site scripting vulnerability has been identified in the Same but Different – Related Posts by Taxonomy plugin for WordPress, affecting all versions through 1.0.16. The vulnerability arises from the plugin's use of add_query_arg and remove_query_arg functions without proper escaping, allowing unauthenticated attackers to inject arbitrary web scripts. These scripts could be executed if a user is tricked into clicking a link that contains the injected script.

A stored cross-site scripting vulnerability has been identified in the PIXNET Plugin for WordPress, affecting all versions through 2.9.10. The issue arises from inadequate input sanitization and output escaping, allowing authenticated attackers with Subscriber-level access or higher to inject arbitrary scripts. These scripts are executed when a user accesses the compromised page.

A stored cross-site scripting vulnerability has been identified in the Horoscope And Tarot plugin for WordPress, affecting all versions through 1.3.0. The issue arises from inadequate input sanitization and output escaping of user-supplied attributes in the 'divine_horoscope' shortcode. This vulnerability allows authenticated attackers with contributor-level access or higher to inject arbitrary web scripts into pages, which are executed when users access the affected pages.

A vulnerability allowing sensitive information exposure has been identified in the Member Access plugin for WordPress, affecting all versions through 1.1.6. This issue arises from an unauthenticated content restriction bypass, which can be exploited via the WordPress core search feature. As a result, attackers can access sensitive data from posts restricted to higher-level roles, such as administrators.

A vulnerability exists in the Spacer plugin for WordPress, all versions through 3.0.7, due to a missing capability check in the motech_spacer_callback() function. This flaw allows authenticated attackers with Subscriber-level access and above to access and view limited setting information, leading to unauthorized data disclosure.

A stored cross-site scripting vulnerability has been identified in the Sellsy plugin for WordPress, affecting all versions through 2.3.3. The issue arises from inadequate input sanitization and output escaping of user-supplied attributes in the plugin's 'testSellsy' shortcode. This vulnerability allows authenticated attackers with contributor-level access or higher to inject arbitrary web scripts into pages, which are executed when users access the affected pages.

A stored cross-site scripting vulnerability has been identified in the WP Youtube Gallery plugin for WordPress, affecting all versions through 1.9. The issue arises from inadequate input sanitization and output escaping, allowing authenticated attackers with Contributor-level access or higher to inject arbitrary scripts. These scripts are executed when a user accesses the compromised page.

A vulnerability exists in the ClickDesigns plugin for WordPress, allowing unauthorized data modification. This issue arises from a lack of capability checks in the 'clickdesigns_add_api' and 'clickdesigns_remove_api' functions, affecting all versions through 1.8.0. As a result, unauthenticated attackers can alter or delete the plugin's API key.

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Transporters.io plugin for WordPress, affecting all versions through 2.1.1. The vulnerability arises from inadequate nonce validation, allowing unauthenticated attackers to inject malicious scripts by tricking a site administrator into clicking a link.

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Chative Live Chat and Chatbot plugin for WordPress, affecting all versions through 1.1. The issue arises from inadequate nonce validation in the 'add_chative_widget_action()' function. This vulnerability allows unauthenticated attackers to manipulate the channel ID or organization ID by sending a forged request, provided they can deceive a site administrator into clicking a link. Such exploitation could redirect the live chat widget to a channel controlled by the attacker.

A vulnerability allowing sensitive information exposure has been identified in the WordPress Duplicate Post, Page and Any Custom Post plugin, affecting all versions through 3.5.5. The issue arises in the 'dpp_duplicate_as_draft' function, where authenticated attackers with Contributor-level access and above can access potentially sensitive data from draft, scheduled, private, and password-protected posts.

A stored cross-site scripting vulnerability has been identified in the WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress, affecting all versions through 1.7.5. The vulnerability arises from inadequate input sanitization and output escaping on user-supplied attributes, particularly within the 'wpsurveypoll_results' shortcode. This flaw allows authenticated attackers with contributor-level access or higher to inject arbitrary scripts into pages, which are executed when users access the affected page.

A vulnerability allowing arbitrary shortcode execution has been identified in the CF7 WOW Styler plugin for WordPress, affecting all versions through 1.7.0. The issue arises because the plugin does not properly validate user input before executing shortcodes, enabling unauthenticated attackers to execute arbitrary shortcodes. Additionally, this vulnerability is susceptible to reflected cross-site scripting. While version 1.7.0 addressed the reflected XSS issue, the arbitrary shortcode execution vulnerability persists.

A SQL injection vulnerability has been identified in the Live Sales Notification for WooCommerce - Woomotiv plugin for WordPress, affecting all versions through 3.6.1. The vulnerability arises from inadequate escaping of user-supplied data in the 'woomotiv_seen_products_.*' cookie, coupled with a lack of proper preparation in the SQL query. This flaw allows unauthenticated attackers to inject additional SQL commands into existing queries, potentially leading to the extraction of sensitive information from the database.

A privilege escalation vulnerability has been identified in the Themes Coder – Create Android & iOS Apps For Your WooCommerce Site plugin for WordPress, affecting all versions through 1.3.4. The vulnerability arises from the plugin's failure to properly validate user identity before allowing password changes via the update_user_profile() function. This flaw enables unauthenticated attackers to reset passwords for any user, including administrators, and gain unauthorized access to their accounts.

A reflected cross-site scripting vulnerability has been identified in the ARS Affiliate Page Plugin for WordPress, affecting all versions through 2.0.2. The issue arises from inadequate input sanitization and output escaping, allowing unauthenticated attackers to inject arbitrary web scripts via the 'utm_keyword' parameter. These injected scripts could be executed on pages if a user is tricked into clicking a link.

A stored cross-site scripting vulnerability has been identified in the Formaloo Form Maker & Customer Analytics for WordPress & WooCommerce plugin, affecting all versions through 2.1.3.2. The vulnerability arises from inadequate input sanitization and output escaping, allowing authenticated attackers with Contributor-level access or higher to inject arbitrary scripts. These scripts are executed when a user accesses the compromised page.

A stored cross-site scripting vulnerability has been identified in the Slider Pro Lite plugin for WordPress, affecting all versions through 1.4.1. The issue arises from inadequate input sanitization and output escaping on user-supplied attributes, particularly within the 'sliderpro' shortcode. This vulnerability allows authenticated attackers with contributor-level access or higher to inject arbitrary web scripts into pages, which are executed when users access the affected page.

A stored cross-site scripting vulnerability has been identified in the Sell Media plugin for WordPress, affecting all versions through 2.5.8.5. The issue arises from inadequate input sanitization and output escaping of user-supplied attributes in the 'sell_media_search_form_gutenberg' shortcode. This vulnerability allows authenticated attackers with contributor-level access or higher to inject arbitrary web scripts into pages, which are executed when users access the affected pages.

A SQL injection vulnerability has been identified in the Timeline Designer plugin for WordPress, affecting all versions through 1.4. The issue arises from inadequate escaping of user-supplied data in the 's' parameter, allowing unauthenticated attackers to inject additional SQL queries. This exploitation could lead to unauthorized access to sensitive information within the database.