Filtered by vendor Acnam Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-2887 1 Acnam 1 Wp Server Health Stats 2024-11-21 4.8 Medium
The WP Server Health Stats WordPress plugin before 1.7.0 does not escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
CVE-2022-0191 1 Acnam 1 Ad Invalid Click Protector 2024-11-21 6.5 Medium
The Ad Invalid Click Protector (AICP) WordPress plugin before 1.2.7 does not have CSRF check deleting banned users, which could allow attackers to make a logged in admin remove arbitrary bans
CVE-2022-0190 1 Acnam 1 Ad Invalid Click Protector 2024-11-21 8.8 High
The Ad Invalid Click Protector (AICP) WordPress plugin before 1.2.6 is affected by a SQL Injection in the id parameter of the delete action.