Vulnerabilities (CVE)

Filtered by vendor Oxilab Subscribe
Filtered by product Accordions
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-37122 1 Oxilab 1 Accordions 2024-11-21 N/A 5.9 MEDIUM
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Biplob Adhikari Accordions allows Stored XSS.This issue affects Accordions: from n/a through 2.3.5.
CVE-2023-25962 1 Oxilab 1 Accordions 2024-11-21 N/A 5.9 MEDIUM
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Biplob Adhikari Accordion – Multiple Accordion or FAQs Builder plugin <= 2.3.0 versions.
CVE-2022-45082 1 Oxilab 1 Accordions 2024-11-21 N/A 3.4 LOW
Multiple Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerabilities in Accordions plugin <= 2.0.3 on WordPress via &addons-style-name and &accordions_or_faqs_license_key.
CVE-2022-38104 1 Oxilab 1 Accordions 2024-11-21 N/A 7.2 HIGH
Auth. WordPress Options Change (siteurl, users_can_register, default_role, admin_email and new_admin_email) vulnerability in Biplob Adhikari's Accordions – Multiple Accordions or FAQs Builder plugin (versions <= 2.0.3 on WordPress.
CVE-2022-33198 1 Oxilab 1 Accordions 2024-11-21 N/A 9.8 CRITICAL
Unauthenticated WordPress Options Change vulnerability in Biplob Adhikari's Accordions plugin <= 2.0.2 at WordPress.