Vulnerabilidades em pickplugins

72 resultados

CVE-2021-24300—PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS)EPSS 10.6%CVE-2024-8253HIGHPost Grid and Gutenberg Blocks 2.2.87 - 2.2.90 - Authenticated (Subscriber+) Privilege EscalationEPSS 9.6%CVE-2023-40211HIGHWordPress Post Grid Plugin <= 2.2.50 is vulnerable to Sensitive Data ExposureEPSS 2.0%CVE-2025-32144HIGHWordPress Job Board Manager Plugin <= 2.1.61 - PHP Object Injection vulnerabilityEPSS 0.8%CVE-2025-32143HIGHWordPress Accordion plugin <= 2.3.11 - PHP Object Injection vulnerabilityEPSS 0.8%CVE-2024-9636CRITICALPost Grid and Gutenberg Blocks 2.2.85 - 2.3.3 - Unauthenticated Privilege EscalationEPSS 0.8%CVE-2024-32816HIGHWordPress Combo Blocks plugin <= 2.2.78 - Sensitive Data Exposure via API vulnerabilityEPSS 0.7%CVE-2024-54273CRITICALWordPress Mail Picker plugin <= 1.0.14 - PHP Object Injection vulnerabilityEPSS 0.7%CVE-2021-24283—Accordion < 2.2.30 - Authenticated Reflected Cross-Site Scripting (XSS)EPSS 0.6%CVE-2023-7072HIGHPost Grid Combo – 36+ Gutenberg Blocks <= 2.2.68 - Information Exposure via get_posts API EndpointEPSS 0.6%CVE-2026-7458CRITICALUser Verification by PickPlugins <= 2.0.46 - Unauthenticated Authentication Bypass via OTP Verification REST API EndpointEPSS 0.6%CVE-2024-3608MEDIUMProduct Designer <= 1.0.33 - Missing Authorization to Unauthenticated Arbitrary Attachment DeletionEPSS 0.6%CVE-2024-9111MEDIUMProduct Designer <= 1.0.36 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.5%CVE-2024-55993MEDIUMWordPress Job Board Manager plugin <= 2.1.61 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-1641MEDIUMAccordion <= 2.2.96 - Missing Authorization to Authenticated(Contributor+) Post DuplicationEPSS 0.5%CVE-2021-4450HIGHPost Grid <= 2.1.12 - Contributor+ SQL InjectionEPSS 0.5%CVE-2024-31277HIGHWordPress Product Designer plugin <= 1.0.32 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2024-38726HIGHWordPress Product Designer plugin <= 1.0.33 - Arbitrary Content Deletion vulnerabilityEPSS 0.5%CVE-2025-12374CRITICALEmail Verification, Email OTP, Block Spam Email, Passwordless login, Hide Login, Magic Login – User Verification <= 2.0.44 - Authentication Bypass to Account TakeoverEPSS 0.4%CVE-2024-13796MEDIUMPost Grid and Gutenberg Blocks – ComboBlocks <= 2.3.6 - Unauthenticated User Information ExposureEPSS 0.4%

← anteriorpágina 1 / 4próxima →