Filtered by vendor Presspage Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-37992 1 Presspage 1 Smarty For Wordpress 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin <= 3.1.35 versions.
CVE-2022-0827 1 Presspage 1 Bestbooks 2024-11-21 9.8 Critical
The Bestbooks WordPress plugin through 2.6.3 does not sanitise and escape some parameters before using them in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users