Filtered by vendor Simplysymphony
Subscriptions
Filtered by product Plugnedit
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2015-9423 | 1 Simplysymphony | 1 Plugnedit | 2024-11-21 | 5.4 Medium |
The PlugNedit Adaptive Editor plugin before 6.2.0 for WordPress has XSS via wp-admin/admin-ajax.php?action=simple_fields_field_type_post_dialog_load PlugneditBGColor, PlugneditEditorMargin, plugnedit_width, pnemedcount, or plugneditcontent parameters. | ||||
CVE-2015-9422 | 1 Simplysymphony | 1 Plugnedit | 2024-11-21 | 6.5 Medium |
The PlugNedit Adaptive Editor plugin before 6.2.0 for WordPress has CSRF with resultant XSS via wp-admin/admin-ajax.php?action=simple_fields_field_type_post_dialog_load plugnedit_width, pnemedcount, PlugneditBGColor, PlugneditEditorMargin, or plugneditcontent parameters. |
Page 1 of 1.