Unknown Note Press vulnerabilities
3 known vulnerabilities affecting unknown/note_press.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
LOW3
Vulnerabilities
Page 1 of 1
CVE-2022-1689LOWCVSS 2.7≥ 0.1.10, ≤ 0.1.102022-06-08
CVE-2022-1689 [LOW] CWE-89 CVE-2022-1689: The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the Update parameter bef
The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the Update parameter before using it in a SQL statement when updating a note via the admin dashboard, leading to an SQL injection
cvelistv5nvd
CVE-2022-1690LOWCVSS 2.7≥ 0.1.10, ≤ 0.1.102022-06-08
CVE-2022-1690 [LOW] CWE-89 CVE-2022-1690: The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the ids from the bulk ac
The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the ids from the bulk actions before using them in a SQL statement in an admin page, leading to an SQL injection
cvelistv5nvd
CVE-2022-1688LOWCVSS 2.7≥ 0.1.10, ≤ 0.1.102022-06-08
CVE-2022-1688 [LOW] CWE-89 CVE-2022-1688: The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the id parameter before
The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the id parameter before using it in various SQL statement via the admin dashboard, leading to SQL Injections
cvelistv5nvd