Peepso

Peepso

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2024-7426

  • EPSS 0.49%
  • Veröffentlicht 25.09.2024 03:15:03
  • Zuletzt bearbeitet 30.09.2024 14:17:51

The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 6.4.6.0. This is due to the plugin displaying errors and allowing direc...

4.8

CVE-2024-7618

  • EPSS 0.32%
  • Veröffentlicht 10.09.2024 08:15:03
  • Zuletzt bearbeitet 19.09.2024 18:20:00

The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, and including, 6.4.5.0 due to insufficient input sa...

4.8

CVE-2024-7655

  • EPSS 0.32%
  • Veröffentlicht 10.09.2024 08:15:03
  • Zuletzt bearbeitet 19.09.2024 18:20:53

The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 6.4.5.0 due to insufficient input sanitization and output escapi...

5.4

CVE-2024-22158

  • EPSS 0.08%
  • Veröffentlicht 31.01.2024 19:15:09
  • Zuletzt bearbeitet 21.11.2024 08:55:42

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PeepSo Community by PeepSo – Social Network, Membership, Registration, User Profiles allows Stored XSS.This issue affects Community by PeepSo – Soci...

4.3

CVE-2023-7125

Exploit
  • EPSS 0.16%
  • Veröffentlicht 16.01.2024 16:15:14
  • Zuletzt bearbeitet 17.06.2025 21:15:33

The Community by PeepSo WordPress plugin before 6.3.1.2 does not have CSRF check when creating a user post (visible on their wall in their profile page), which could allow attackers to make logged in users perform such action via a CSRF attack

6.1

CVE-2024-0187

Exploit
  • EPSS 0.51%
  • Veröffentlicht 16.01.2024 16:15:14
  • Zuletzt bearbeitet 22.05.2025 18:15:32

The Community by PeepSo WordPress plugin before 6.3.1.2 does not sanitise and escape various parameters and generated URLs before outputting them back attributes, leading to a Reflected Cross-Site Scripting which could be used against high privilege ...

6.1

CVE-2023-48746

  • EPSS 0.19%
  • Veröffentlicht 30.11.2023 17:15:12
  • Zuletzt bearbeitet 21.11.2024 08:32:22

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PeepSo Community by PeepSo – Social Network, Membership, Registration, User Profiles allows Reflected XSS.This issue affects Community by PeepSo – S...

5.4

CVE-2023-47850

  • EPSS 0.18%
  • Veröffentlicht 30.11.2023 12:15:08
  • Zuletzt bearbeitet 21.11.2024 08:30:54

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PeepSo Community by PeepSo – Social Network, Membership, Registration, User Profiles allows Stored XSS.This issue affects Community by PeepSo – Soci...

8.8

CVE-2023-39925

  • EPSS 0.05%
  • Veröffentlicht 22.11.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 08:16:03

Cross-Site Request Forgery (CSRF) vulnerability in PeepSo Download Community by PeepSo plugin <= 6.1.6.0 versions.

8.8

CVE-2023-32092

  • EPSS 0.13%
  • Veröffentlicht 09.11.2023 23:15:09
  • Zuletzt bearbeitet 21.11.2024 08:02:41

Cross-Site Request Forgery (CSRF) vulnerability in PeepSo Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin <= 6.0.9.0 versions.