Vladimir Anokhin Shortcodes Ultimate vulnerabilities
3 known vulnerabilities affecting vladimir_anokhin/shortcodes_ultimate.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-41136P4HIGHCVSS 8.8≤ 5.12.02022-11-08
CVE-2022-41136 [HIGH] CWE-79 CVE-2022-41136: Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) in Vlad
Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) in Vladimir Anokhin's Shortcodes Ultimate plugin <= 5.12.0 on WordPress.
nvd
CVE-2017-2245P4MEDIUMCVSS 5.0vprior to version 4.10.02017-07-07
CVE-2017-2245 [MEDIUM] CWE-22 CVE-2017-2245: Directory traversal vulnerability in Shortcodes Ultimate prior to version 4.10.0 allows remote attac
Directory traversal vulnerability in Shortcodes Ultimate prior to version 4.10.0 allows remote attackers to read arbitrary files via unspecified vectors.
nvd
CVE-2022-38086P4MEDIUMCVSS 4.3≤ 5.12.02022-10-11
CVE-2022-38086 [MEDIUM] CWE-352 CVE-2022-38086: Cross-Site Request Forgery (CSRF) vulnerability in Shortcodes Ultimate plugin <= 5.12.0 at WordPress
Cross-Site Request Forgery (CSRF) vulnerability in Shortcodes Ultimate plugin <= 5.12.0 at WordPress leading to plugin preset settings change.
nvd