Sandhillsdev CVE

Filtered by vendor Sandhillsdev Subscribe

Total 46 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-9505	1 Sandhillsdev	1 Easy Digital Downloads	2024-02-28	4.3 MEDIUM	6.1 MEDIUM
The Easy Digital Downloads (EDD) core component 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7 for WordPress has XSS because add_query_arg is misused.
CVE-2015-9512	2 Easydigitaldownloads, Sandhillsdev	2 Csv Manager, Easy Digital Downloads	2024-02-28	4.3 MEDIUM	6.1 MEDIUM
The Easy Digital Downloads (EDD) CSV Manager extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused.
CVE-2015-9511	2 Easydigitaldownloads, Sandhillsdev	2 Conditional Success Redirects, Easy Digital Downloads	2024-02-28	4.3 MEDIUM	6.1 MEDIUM
The Easy Digital Downloads (EDD) Conditional Success Redirects extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused.
CVE-2015-9515	2 Easydigitaldownloads, Sandhillsdev	2 Htaccess Editor, Easy Digital Downloads	2024-02-28	4.3 MEDIUM	6.1 MEDIUM
The Easy Digital Downloads (EDD) htaccess Editor extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because add_query_arg is misused.
CVE-2019-15116	1 Sandhillsdev	1 Easy Digital Downloads	2024-02-28	4.3 MEDIUM	6.1 MEDIUM
The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging.
CVE-2015-9324	1 Sandhillsdev	1 Easy Digital Downloads	2024-02-28	7.5 HIGH	9.8 CRITICAL
The easy-digital-downloads plugin before 2.3.3 for WordPress has SQL injection.

Vulnerabilities (CVE)