Landing Pages Project Landing Pages vulnerabilities
2 known vulnerabilities affecting landing_pages_project/landing_pages.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2015-4064P3MEDIUMCVSS 6.5PoC≤ 1.8.42015-05-27
CVE-2015-4064 [MEDIUM] CWE-89 CVE-2015-4064: SQL injection vulnerability in modules/module.ab-testing.php in the Landing Pages plugin before 1.8.
SQL injection vulnerability in modules/module.ab-testing.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the post parameter in an edit delete-variation action to wp-admin/post.php.
nvd
CVE-2015-4065P4LOWCVSS 3.5PoC≤ 1.8.42015-05-27
CVE-2015-4065 [LOW] CWE-79 CVE-2015-4065: Cross-site scripting (XSS) vulnerability in shared/shortcodes/inbound-shortcodes.php in the Landing
Cross-site scripting (XSS) vulnerability in shared/shortcodes/inbound-shortcodes.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the post parameter to wp-admin/post-new.php.
nvd