Vulnerabilities (CVE)

Filtered by vendor Projectcaruso Subscribe
Filtered by product Pray For Me
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-3966 1 Projectcaruso 1 Pray For Me 2024-11-21 N/A 6.1 MEDIUM
The Pray For Me WordPress plugin through 1.0.4 does not sanitise and escape some parameters, which could unauthenticated visitors to perform Cross-Site Scripting attacks that trigger when an admin visits the Prayer Requests in the WP Admin