Security Vulnerabilities - CVEs Published In August 2019
The rsvp plugin before 2.3.8 for WordPress has persistent XSS via the note field on the attendee-list screen.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
The sender plugin before 1.2.1 for WordPress has multiple XSS issues.
CVSS Score
6.1
EPSS Score
0.001
Published
2019-08-21
The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
The profile-builder plugin before 1.1.66 for WordPress has multiple XSS issues in forms.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
The flickr-justified-gallery plugin before 3.4.0 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
The profile-builder plugin before 2.2.5 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
The formbuilder plugin before 1.06 for WordPress has multiple XSS issues.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
The universal-analytics plugin before 1.3.1 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via an encrypted message sent to DLPe which when decrypted results in DLPe reading unallocated memory.
CVSS Score
4.4
EPSS Score
0.001
Published
2019-08-21