Security Vulnerabilities - CVEs Published In August 2023
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mammothology WP Full Stripe Free plugin <= 1.6.1 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-08-08
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in VillaTheme WPBulky plugin <= 1.0.10 versions.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-08-08
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Ransom Christofferson PDQ CSV plugin <= 1.0.0 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-08-08
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in GetButton Chat Button by GetButton.Io plugin <= 1.8.9.4 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-08-08
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Syntactics, Inc. EaSYNC plugin <= 1.3.7 versions.
CVSS Score
7.1
EPSS Score
0.001
Published
2023-08-08
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Admin page.
CVSS Score
4.8
EPSS Score
0.002
Published
2023-08-08
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Booking Request page.
CVSS Score
4.8
EPSS Score
0.002
Published
2023-08-08
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Search Maid page.
CVSS Score
4.8
EPSS Score
0.001
Published
2023-08-08
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oduyo Online Collection Software allows SQL Injection.This issue affects Online Collection Software: before 1.0.1.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-08-08
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Postsnippets Post Snippets plugin <= 4.0.2 versions.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-08-08