Vulnerabilities
Vulnerable Software
Yoohooplugins:  Security Vulnerabilities
Cross-Site Request Forgery (CSRF) vulnerability in Yoohoo Plugins When Last Login plugin <= 1.2.1 versions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-11-22
The Sitewide Notice WP WordPress plugin before 2.3 does not sanitise some of its settings before outputting them in frontend pages, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
CVSS Score
4.8
EPSS Score
0.002
Published
2021-08-30


Contact Us

Shodan ® - All rights reserved