Vulnerabilities (CVE)

Filtered by vendor Fullworks Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24767 1 Fullworks 1 Redirect 404 Error Page To Homepage Or Custom Page With Logs 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
The Redirect 404 Error Page to Homepage or Custom Page with Logs WordPress plugin before 1.7.9 does not check for CSRF when deleting logs, which could allow attacker to make a logged in admin delete them via a CSRF attack
CVE-2017-18536 1 Fullworks 1 Stop User Enumeration 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The stop-user-enumeration plugin before 1.3.8 for WordPress has XSS.
CVE-2017-1000226 1 Fullworks 1 Stop User Enumeration 2024-11-21 5.0 MEDIUM 5.3 MEDIUM
Stop User Enumeration 1.3.8 allows user enumeration via the REST API