Skip to main content
CVE-2023-6160 LOW Monitor

The LifterLMS - WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to Directory Traversal in versions up to, and including, 7.4.2 via the maybe_serve_export function. Rated low severity (CVSS 3.3), this vulnerability is remotely exploitable. No vendor patch available.

WordPress Path Traversal Lifterlms
NVD VulDB
CVSS 3.1
3.3
EPSS
1.5%
CVE-2023-43081 LOW PATCH Monitor

PowerProtect Agent for File System Version 19.14 and prior, contains an incorrect default permissions vulnerability in ddfscon component. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Privilege Escalation Powerprotect Agent For File System
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2023-6164 LOW PATCH Monitor

The MainWP Dashboard - WordPress Manager for Multiple Websites Maintenance plugin for WordPress is vulnerable to CSS Injection via the ‘newColor’ parameter in all versions up to, and including,. Rated low severity (CVSS 2.2), this vulnerability is remotely exploitable.

Code Injection WordPress Mainwp
NVD VulDB
CVSS 3.1
2.2
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy