CVE-2025-57988
- EPSS 0.05%
- Veröffentlicht 22.09.2025 18:24:24
- Zuletzt bearbeitet 22.09.2025 21:22:33
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash allows Stored XSS. This issue affects Uncanny Toolkit for LearnDash: from n/a through 3.0.7.3.
CVE-2025-48080
- EPSS 0.03%
- Veröffentlicht 16.05.2025 15:45:05
- Zuletzt bearbeitet 19.05.2025 13:35:50
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash allows Stored XSS. This issue affects Uncanny Toolkit for LearnDash: from n/a through 3.7.0.2.
CVE-2025-22268
- EPSS 0.03%
- Veröffentlicht 15.04.2025 21:53:09
- Zuletzt bearbeitet 16.04.2025 13:25:37
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash allows Stored XSS. This issue affects Uncanny Toolkit for LearnDash: from n/a through 3.7.0.1.
CVE-2023-34019
- EPSS 0.17%
- Veröffentlicht 13.12.2024 15:15:14
- Zuletzt bearbeitet 13.12.2024 15:15:14
Missing Authorization vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Uncanny Toolkit for LearnDash: from n/a through 3.6.4.3.
CVE-2023-34020
- EPSS 4.02%
- Veröffentlicht 27.03.2024 14:15:08
- Zuletzt bearbeitet 13.05.2025 14:41:36
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash.This issue affects Uncanny Toolkit for LearnDash: from n/a through 3.6.4.3.
CVE-2023-23714
- EPSS 0.06%
- Veröffentlicht 26.05.2023 12:15:13
- Zuletzt bearbeitet 21.11.2024 07:46:43
Cross-Site Request Forgery (CSRF) vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash plugin <= 3.6.4.1 versions.