Tonjoostudio: Security Vulnerabilities
The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS.
CVSS Score
8.8
EPSS Score
0.001
Published
2019-09-17
The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has reflected XSS via the skin parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-17
The Easy Custom Auto Excerpt plugin 2.4.6 for WordPress has XSS via the tonjoo_ecae_options[custom_css] parameter to the wp-admin/admin.php?page=tonjoo_excerpt URI.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-01-09