Saleswonder Webinarignition vulnerabilities
4 known vulnerabilities affecting saleswonder/webinarignition.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-51423P3CRITICALCVSS 9.8≤ 3.05.02023-12-31
CVE-2023-51423 [CRITICAL] CWE-89 CVE-2023-51423: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnitio
nvd
CVE-2023-51422P3HIGHCVSS 8.8≤ 3.05.02023-12-29
CVE-2023-51422 [HIGH] CWE-502 CVE-2023-51422: Deserialization of Untrusted Data vulnerability in Saleswonder Team Webinar Plugin: Create live/ever
Deserialization of Untrusted Data vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition: from n/a through 3.05.0.
nvd
CVE-2024-32445P3HIGHCVSS 8.8fixed in 3.06.02024-04-15
CVE-2024-32445 [HIGH] CWE-352 CVE-2024-32445: Cross-Site Request Forgery (CSRF) vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-
Cross-Site Request Forgery (CSRF) vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition.This issue affects WebinarIgnition: from n/a through <= 3.05.8.
nvd
CVE-2023-25023P4MEDIUMCVSS 4.8≤ 2.14.22023-04-07
CVE-2023-25023 [MEDIUM] CWE-79 CVE-2023-25023: Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Saleswonder.Biz Webinar ignition p
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Saleswonder.Biz Webinar ignition plugin <= 2.14.2 versions.
nvd