Filtered by vendor Ajexperience Subscriptions
Filtered by product 404 Solution Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-11277 1 Ajexperience 1 404 Solution 2024-11-26 6.1 Medium
The 404 Solution plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs in all versions up to, and including, 2.35.19 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
CVE-2023-52146 1 Ajexperience 1 404 Solution 2024-11-21 5.3 Medium
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Aaron J 404 Solution.This issue affects 404 Solution: from n/a through 2.33.0.
CVE-2023-50848 1 Ajexperience 1 404 Solution 2024-11-21 7.6 High
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aaron J 404 Solution.This issue affects 404 Solution: from n/a through 2.34.0.