A vulnerability was found in Handsome Testimonials & Reviews Plugin up to 2.1.0 on WordPress (WordPress Plugin). It has been rated as critical. Affected by this issue is the function hndtst_action_instance_callback
of the component AJAX Call Handler. Upgrading to version 2.1.1 eliminates this vulnerability.
Handsome Testimonials & Reviews Plugin up to 2.1.0 on WordPress AJAX Call hndtst_action_instance_callback hndtst_previewShortcodeInstanceId sql injection
- Virtual Patching
- August 2, 2021
- 6:05 pm
CVE-2024-8523 : LMXCMS UP TO 1.4 SQL COMMAND EXECUTION MODULE ADMIN.PHP FORMATDATA DATA CODE INJECTION
Description A vulnerability was found in lmxcms up to 1.4 and classified as critical. Affected by this issue is the
CVE-2024-25584 : OPEN-XCHANGE OX DOVECOT PRO UP TO 2.3.21 DATA COMMAND DATA AUTHENTICITY
Description Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be
CVE-2024-8521 : WAVELOG UP TO 1.8.0 LIVE QSO /QSO INDEX MANUAL CROSS SITE SCRIPTING
Description A vulnerability, which was classified as problematic, was found in Wavelog up to 1.8.0. Affected is the function index