Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2025-47636
- EPSS 0.2%
- Veröffentlicht 07.05.2025 14:20:40
- Zuletzt bearbeitet 15.09.2025 16:15:38
Path Traversal vulnerability in Fernando Briano List category posts list-category-posts allows PHP Local File Inclusion.This issue affects List category posts: from n/a through 0.91.0.
5.4
CVE-2024-9020
- EPSS 0.26%
- Veröffentlicht 18.01.2025 06:15:27
- Zuletzt bearbeitet 13.05.2025 21:23:17
The List category posts WordPress plugin before 0.90.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above ...
5.4
CVE-2023-6994
- EPSS 0.16%
- Veröffentlicht 11.01.2024 09:15:54
- Zuletzt bearbeitet 21.11.2024 08:44:59
The List category posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catlist' shortcode in all versions up to, and including, 0.89.3 due to insufficient input sanitization and output escaping on user supplied at...
1