Plainviewplugins Mycryptocheckout vulnerabilities
2 known vulnerabilities affecting plainviewplugins/mycryptocheckout.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-1546P3MEDIUMCVSS 6.1PoCfixed in 2.1242023-05-02
CVE-2023-1546 [MEDIUM] CWE-79 CVE-2023-1546: The MyCryptoCheckout WordPress plugin before 2.124 does not escape some URLs before outputting them
The MyCryptoCheckout WordPress plugin before 2.124 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting
nvd
CVE-2023-41693P4HIGHCVSS 8.8≤ 2.1252023-10-03
CVE-2023-41693 [HIGH] CWE-352 CVE-2023-41693: Cross-Site Request Forgery (CSRF) vulnerability in edward_plainview MyCryptoCheckout plugin <= 2.125
Cross-Site Request Forgery (CSRF) vulnerability in edward_plainview MyCryptoCheckout plugin <= 2.125 versions.
nvd