Security Vulnerabilities - CVEs Published In August 2022
Use After Free in GitHub repository vim/vim prior to 9.0.0246.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-08-23
Broken Authentication vulnerability in yotuwp Video Gallery plugin <= 1.3.4.5 at WordPress.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-08-23
Authenticated (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Roman Pronskiy's Search Exclude plugin <= 1.2.6 at WordPress.
CVSS Score
4.8
EPSS Score
0.001
Published
2022-08-23
Authenticated Arbitrary File Upload vulnerability in dmitrylitvinov Uploading SVG, WEBP and ICO files plugin <= 1.0.1 at WordPress.
CVSS Score
7.2
EPSS Score
0.009
Published
2022-08-23
Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in W3 Eden Download Manager plugin <= 3.2.48 at WordPress.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-08-23
Cross-Site Request Forgery (CSRF) vulnerabilities in WPChill Gallery PhotoBlocks plugin <= 1.2.6 at WordPress.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-08-23
Authenticated (subscriber+) plugin settings change leading to Stored Cross-Site Scripting (XSS) vulnerability in Akash soni's AS – Create Pinterest Pinboard Pages plugin <= 1.0 at WordPress.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-08-23
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Alpine Press Alpine PhotoTile for Pinterest plugin <= 1.3.1 at WordPress.
CVSS Score
4.8
EPSS Score
0.001
Published
2022-08-23
Cross-Site Request Forgery (CSRF) leading to plugin settings update in YooMoney ЮKassa для WooCommerce plugin <= 2.3.0 at WordPress.
CVSS Score
8.8
EPSS Score
0.002
Published
2022-08-23
Cross-Site Request Forgery (CSRF) vulnerability in WordPlus Better Messages plugin <= 1.9.9.148 at WordPress.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-08-23