Filtered by vendor Simplysymphony Subscriptions
Filtered by product Plugnedit Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2015-9423 1 Simplysymphony 1 Plugnedit 2024-11-21 5.4 Medium
The PlugNedit Adaptive Editor plugin before 6.2.0 for WordPress has XSS via wp-admin/admin-ajax.php?action=simple_fields_field_type_post_dialog_load PlugneditBGColor, PlugneditEditorMargin, plugnedit_width, pnemedcount, or plugneditcontent parameters.
CVE-2015-9422 1 Simplysymphony 1 Plugnedit 2024-11-21 6.5 Medium
The PlugNedit Adaptive Editor plugin before 6.2.0 for WordPress has CSRF with resultant XSS via wp-admin/admin-ajax.php?action=simple_fields_field_type_post_dialog_load plugnedit_width, pnemedcount, PlugneditBGColor, PlugneditEditorMargin, or plugneditcontent parameters.