Vulnerabilities (CVE)

Filtered by vendor Acnam Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-2887 1 Acnam 1 Wp Server Health Stats 2024-11-21 N/A 4.8 MEDIUM
The WP Server Health Stats WordPress plugin before 1.7.0 does not escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
CVE-2022-0191 1 Acnam 1 Ad Invalid Click Protector 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
The Ad Invalid Click Protector (AICP) WordPress plugin before 1.2.7 does not have CSRF check deleting banned users, which could allow attackers to make a logged in admin remove arbitrary bans
CVE-2022-0190 1 Acnam 1 Ad Invalid Click Protector 2024-11-21 6.5 MEDIUM 8.8 HIGH
The Ad Invalid Click Protector (AICP) WordPress plugin before 1.2.6 is affected by a SQL Injection in the id parameter of the delete action.