CVE-2025-48136
- EPSS 0.16%
- Veröffentlicht 16.05.2025 15:45:14
- Zuletzt bearbeitet 30.05.2025 14:36:58
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Estatik Mortgage Calculator Estatik allows PHP Local File Inclusion. This issue affects Mortgage Calculator Estatik: from n/a thr...
CVE-2025-26907
- EPSS 0.18%
- Veröffentlicht 25.02.2025 15:15:26
- Zuletzt bearbeitet 25.02.2025 15:15:26
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Estatik Mortgage Calculator Estatik allows Stored XSS. This issue affects Mortgage Calculator Estatik: from n/a through 2.0.12.
CVE-2024-9354
- EPSS 1.45%
- Veröffentlicht 07.01.2025 07:15:28
- Zuletzt bearbeitet 07.01.2025 07:15:28
The Estatik Mortgage Calculator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'color' parameter in all versions up to, and including, 2.0.11 due to insufficient input sanitization and output escaping. This makes it poss...
CVE-2023-28490
- EPSS 0.17%
- Veröffentlicht 27.09.2023 15:18:49
- Zuletzt bearbeitet 21.11.2024 07:55:13
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Estatik Estatik Mortgage Calculator plugin <= 2.0.7 versions.
CVE-2023-40601
- EPSS 0.17%
- Veröffentlicht 06.09.2023 09:15:08
- Zuletzt bearbeitet 21.11.2024 08:19:48
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Estatik Estatik Mortgage Calculator plugin <= 2.0.7 versions.