CVE-2022-35277 Cross-Site Request Forgery (CSRF) vulnerability in GetResponse plugin <= 5.5.20 at WordPress.
GetResponse plugin is the most widely used WordPress email marketing tool. It is used to send email campaigns on the WordPress blog. GetResponse plugin has
CVE-2022-35725 Stored XSS vulnerability in the wp-forecast plugin = 7.5 at WordPress.
This XSS vulnerabitity was fixed in version 8.1.2. To patch this issue, update to the latest version. To patch this issue, update to
CVE-2022-36422 An increase/decrease in the post ratings WP plugin through a race condition. 1.89
This is a critical plugin as it is used by millions of WordPress websites to enable/disable comments on their posts. The plugin is developed
CVE-2022-36793 Vulnerabilities in WP Shop plugin = 3.9.6 at WordPress
END>
A user with an account could change any data, leading to a potential data breach. Data integrity issues in WP Shop plugin = 3.9.6
CVE-2022-38268 An SQL injection vulnerability was found in the School Activity Updates with SMS Notification v1.0 component.
2018-06-26: This version was updated to version 1.2.2, fixing the SQL injection vulnerability. The researcher who discovered this vulnerability states that the module
Episode
00:00:00
00:00:00