Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.9
CVE-2024-27972
- EPSS 48.98%
- Veröffentlicht 03.04.2024 12:15:12
- Zuletzt bearbeitet 21.11.2024 09:05:32
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Very Good Plugins WP Fusion Lite allows Command Injection.This issue affects WP Fusion Lite: from n/a through 3.41.24.
6.1
CVE-2021-34660
- EPSS 0.21%
- Veröffentlicht 09.08.2021 13:15:07
- Zuletzt bearbeitet 21.11.2024 06:10:54
The WP Fusion Lite WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the startdate parameter found in the ~/includes/admin/logging/class-log-table-list.php file which allows attackers to inject arbitrary web scripts, in versions up...
4.7
CVE-2021-34661
- EPSS 0.1%
- Veröffentlicht 09.08.2021 13:15:07
- Zuletzt bearbeitet 21.11.2024 06:10:55
The WP Fusion Lite WordPress plugin is vulnerable to Cross-Site Request Forgery via the `show_logs_section` function found in the ~/includes/admin/logging/class-log-handler.php file which allows attackers to drop all logs for the plugin, in versions ...
1