CVE-2021-34659: Plugmatter Pricing Table Lite Plugin up to 1.0.32 on WordPress Parameter ~/license.php email cross site scripting

Overview

A vulnerability was found in Plugmatter Pricing Table Lite Plugin up to 1.0.32 on WordPress (WordPress Plugin) and classified as problematic. Affected by this issue is an unknown function of the file ~/license.php of the component Parameter Handler. Applying a patch is able to eliminate this problem. The bugfix is ready for download at plugins.trac.wordpress.org.

CVE-ID	CVE-2021-34659
Risk Score	6.1
Severity rating:	MEDIUM
CVSS Vector:	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Exploiting Class:	Cross site scripting
Remote:	Yes

Affected Product:

Type: WordPress Plugin

Name: Plugmatter Pricing Table Lite Plugin

Basic Matrices

Attack Vector:	Network
Attack Complexity:	Low
Privileges Required:	None
User Interaction:	Required
Scope:	Changed
Confidentiality Impact:	Low
Integrity Impact:	Low
Availability Impact:	None
CWE:	CWE-79

Mitigation

Applying a patch is able to eliminate this problem. The bugfix is ready for download at plugins.trac.wordpress.org.

Contact us to get started

CVE-2024-45663 : IBM DB2/DB2 CONNECT SERVER 11.1/11.5 QUERY DENIAL OF SERVICE

Description IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial

Learn more

CVE-2024-52739 : D-LINK DI-8400 16.07.26A1 MSP_INFO_HTM CMD PRIVILEGE ESCALATION

Description D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (RCE) vulnerabilities in the msp_info_htm function via the

Learn more

CVE-2024-52769 : DEDEBIZ 6.3.0 FILE /ADMIN/FRIENDLINK_EDIT UNRESTRICTED UPLOAD

Description An arbitrary file upload vulnerability in the component /admin/friendlink_edit of DedeBIZ v6.3.0 allows attackers to execute arbitrary code via

Learn more