Vulnerabilities (CVE)

Filtered by vendor Quadlayers Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-2361 1 Quadlayers 1 Wp Social Chat 2024-11-21 N/A 4.8 MEDIUM
The WP Social Chat WordPress plugin before 6.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks.
CVE-2022-23982 1 Quadlayers 1 Perfect Brands For Woocommerce 2024-11-21 5.0 MEDIUM 4.3 MEDIUM
The vulnerability discovered in WordPress Perfect Brands for WooCommerce plugin (versions <= 2.0.4) allows server information exposure.
CVE-2022-23981 1 Quadlayers 1 Perfect Brands For Woocommerce 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
The vulnerability allows Subscriber+ level users to create brands in WordPress Perfect Brands for WooCommerce plugin (versions <= 2.0.4).
CVE-2019-15779 1 Quadlayers 1 Wp Social Feed Gallery 2024-11-21 6.8 MEDIUM 8.8 HIGH
The insta-gallery plugin before 2.4.8 for WordPress has no nonce validation for qligg_dismiss_notice or qligg_form_item_delete.