CVE-2025-48136
- EPSS 0.56%
- Veröffentlicht 16.05.2025 15:45:14
- Zuletzt bearbeitet 01.04.2026 17:24:26
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Estatik Mortgage Calculator Estatik estatik-mortgage-calculator allows PHP Local File Inclusion.This issue affects Mortgage Calcu...
CVE-2025-26907
- EPSS 0.1%
- Veröffentlicht 25.02.2025 15:15:26
- Zuletzt bearbeitet 15.04.2026 00:35:42
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Estatik Mortgage Calculator Estatik estatik-mortgage-calculator allows Stored XSS.This issue affects Mortgage Calculator Estatik: from n/a through <...
CVE-2024-9354
- EPSS 1.91%
- Veröffentlicht 07.01.2025 07:15:28
- Zuletzt bearbeitet 15.04.2026 00:35:42
The Estatik Mortgage Calculator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'color' parameter in all versions up to, and including, 2.0.11 due to insufficient input sanitization and output escaping. This makes it poss...
CVE-2023-28490
- EPSS 0.18%
- Veröffentlicht 27.09.2023 15:18:49
- Zuletzt bearbeitet 21.11.2024 07:55:13
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Estatik Estatik Mortgage Calculator plugin <= 2.0.7 versions.
CVE-2023-40601
- EPSS 0.17%
- Veröffentlicht 06.09.2023 09:15:08
- Zuletzt bearbeitet 21.11.2024 08:19:48
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Estatik Estatik Mortgage Calculator plugin <= 2.0.7 versions.