Cozmoslabs Profile Builder vulnerabilities
24 known vulnerabilities affecting cozmoslabs/profile_builder.
Total CVEs
24
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH6MEDIUM14UNKNOWN1
Vulnerabilities
Page 2 of 2
CVE-2014-10380MEDIUMCVSS 6.1fixed in 1.1.662019-08-21
CVE-2014-10380 [MEDIUM] CWE-79 CVE-2014-10380: The profile-builder plugin before 1.1.66 for WordPress has multiple XSS issues in forms.
The profile-builder plugin before 1.1.66 for WordPress has multiple XSS issues in forms.
nvd
CVE-2016-10911MEDIUMCVSS 6.1fixed in 2.4.22019-08-21
CVE-2016-10911 [MEDIUM] CWE-79 CVE-2016-10911: The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues.
The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues.
nvd
CVE-2015-9328MEDIUMCVSS 6.1fixed in 2.2.52019-08-21
CVE-2015-9328 [MEDIUM] CWE-79 CVE-2015-9328: The profile-builder plugin before 2.2.5 for WordPress has XSS.
The profile-builder plugin before 2.2.5 for WordPress has XSS.
nvd
CVE-2014-8492MEDIUMCVSS 6.1≤ 2.0.22017-10-06
CVE-2014-8492 [MEDIUM] CWE-79 CVE-2014-8492: Multiple cross-site scripting (XSS) vulnerabilities in assets/misc/fallback-page.php in the Profile
Multiple cross-site scripting (XSS) vulnerabilities in assets/misc/fallback-page.php in the Profile Builder plugin before 2.0.3 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) site_name, (2) message, or (3) site_url parameter.
nvd
← Previous2 / 2