Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3
CVE-2018-18576
- EPSS 0.24%
- Published 17.03.2020 15:15:12
- Last modified 21.11.2024 03:56:11
The Hustle (aka wordpress-popup) plugin through 6.0.5 for WordPress allows Directory Traversal to obtain a directory listing via the views/admin/dashboard/ URI.
8.8
CVE-2019-11872
- EPSS 1.05%
- Published 29.05.2019 19:29:00
- Last modified 21.11.2024 04:21:55
The Hustle (aka wordpress-popup) plugin 6.0.7 for WordPress is vulnerable to CSV Injection as it allows for injecting malicious code into a pop-up window. Successful exploitation grants an attacker with a right to execute malicious code on the admini...
1