Vulnerabilities (CVE)

Filtered by vendor Tonjoostudio Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-5311 1 Tonjoostudio 1 Easy Custom Auto Excerpt 2024-11-21 3.5 LOW 5.4 MEDIUM
The Easy Custom Auto Excerpt plugin 2.4.6 for WordPress has XSS via the tonjoo_ecae_options[custom_css] parameter to the wp-admin/admin.php?page=tonjoo_excerpt URI.
CVE-2016-10975 1 Tonjoostudio 1 Fluid-responsive-slideshow 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has reflected XSS via the skin parameter.
CVE-2016-10974 1 Tonjoostudio 1 Fluid-responsive-slideshow 2024-11-21 6.8 MEDIUM 8.8 HIGH
The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS.