Magazine3

Easy Table Of Contents

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.4

CVE-2025-13738

  • EPSS 0.03%
  • Veröffentlicht 19.02.2026 04:36:15
  • Zuletzt bearbeitet 19.02.2026 15:53:02

The Easy Table of Contents plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `ez-toc` shortcode in all versions up to, and including, 2.0.78 due to insufficient input sanitization and output escaping on user supplied ...

6.1

CVE-2024-7082

Exploit
  • EPSS 0.24%
  • Veröffentlicht 06.08.2024 06:15:36
  • Zuletzt bearbeitet 28.05.2025 19:43:50

The Easy Table of Contents WordPress plugin before 2.0.68 does not sanitise and escape some parameters, which could allow users with a role as low as Editor to perform Cross-Site Scripting attacks.

6.1

CVE-2024-6334

Exploit
  • EPSS 0.33%
  • Veröffentlicht 09.07.2024 06:15:03
  • Zuletzt bearbeitet 21.05.2025 19:11:47

The Easy Table of Contents WordPress plugin before 2.0.67.1 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed.

5.9

CVE-2024-5573

Exploit
  • EPSS 0.12%
  • Veröffentlicht 26.06.2024 06:15:17
  • Zuletzt bearbeitet 19.05.2025 21:03:01

The Easy Table of Contents WordPress plugin before 2.0.66 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed