cbcvebase.

Fatcatapps Easy Pricing Tables vulnerabilities

4 known vulnerabilities affecting fatcatapps/easy_pricing_tables.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2022-1904P3MEDIUMCVSS 6.1PoCfixed in 3.2.12022-06-27
CVE-2022-1904 [MEDIUM] CWE-79 CVE-2022-1904: The Pricing Tables WordPress Plugin WordPress plugin before 3.2.1 does not sanitise and escape param The Pricing Tables WordPress Plugin WordPress plugin before 3.2.1 does not sanitise and escape parameter before outputting it back in a page available to any user (both authenticated and unauthenticated) when a specific setting is enabled, leading to a Reflected Cross-Site Scripting
nvd
CVE-2021-25098P4MEDIUMCVSS 6.5fixed in 3.1.32022-03-07
CVE-2021-25098 [MEDIUM] CWE-352 CVE-2021-25098: The Pricing Tables WordPress Plugin WordPress plugin before 3.1.3 does not verify the CSRF nonce whe The Pricing Tables WordPress Plugin WordPress plugin before 3.1.3 does not verify the CSRF nonce when removing posts, allowing attackers to make a logged in admin remove arbitrary posts from the blog via a CSRF attack, which will be put in the trash
nvd
CVE-2024-8323P4MEDIUMCVSS 5.4fixed in 3.2.72024-11-06
CVE-2024-8323 [MEDIUM] CWE-79 CVE-2024-8323: The Pricing Tables WordPress Plugin – Easy Pricing Tables plugin for WordPress is vulnerable to Stor The Pricing Tables WordPress Plugin – Easy Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘fontFamily’ attribute in all versions up to, and including, 3.2.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to
nvd
CVE-2021-36866P4MEDIUMCVSS 4.8fixed in 3.1.32022-06-02
CVE-2021-36866 [MEDIUM] CWE-79 CVE-2021-36866: Authenticated (author or higher role) Stored Cross-Site Scripting (XSS) vulnerability in Fatcat Apps Authenticated (author or higher role) Stored Cross-Site Scripting (XSS) vulnerability in Fatcat Apps Easy Pricing Tables plugin <= 3.1.2 at WordPress.
nvd
Fatcatapps Easy Pricing Tables vulnerabilities | cvebase