Vulnerabilities (CVE)

Filtered by vendor Cminds Subscribe
Filtered by product Tooltip Glossary
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24678 1 Cminds 1 Tooltip Glossary 2024-02-28 3.5 LOW 5.4 MEDIUM
The CM Tooltip Glossary WordPress plugin before 3.9.21 does not escape some glossary_tooltip shortcode attributes, which could allow users a role as low as Contributor to perform Stored Cross-Site Scripting attacks
CVE-2016-1000132 1 Cminds 1 Tooltip Glossary 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
Reflected XSS in wordpress plugin enhanced-tooltipglossary v3.2.8