Skip to main content
CVE-2023-52181 CRITICAL Act Now

Deserialization of Untrusted Data vulnerability in Presslabs Theme per user.0.1. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization Theme Per User
NVD
CVSS 3.1
10.0
EPSS
0.3%
CVE-2023-52182 CRITICAL Act Now

Deserialization of Untrusted Data vulnerability in ARI Soft ARI Stream Quiz - WordPress Quizzes Builder.3.0. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Deserialization WordPress Ari Stream Quiz
NVD
CVSS 3.1
9.9
EPSS
0.4%
CVE-2023-51469 CRITICAL Act Now

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mestres do WP Checkout Mestres WP.1.9.6. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Checkout Mestres Wp
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2023-51423 CRITICAL Act Now

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Webinarignition
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2023-49777 CRITICAL Act Now

Deserialization of Untrusted Data vulnerability in YITH YITH WooCommerce Product Add-Ons.3.0. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Deserialization WordPress Yith Woocommerce Product Add Ons
NVD
CVSS 3.1
9.1
EPSS
0.4%
CVE-2023-39157 CRITICAL Act Now

Improper Control of Generation of Code ('Code Injection') vulnerability in Crocoblock JetElements For Elementor.6.10. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection RCE Jetelements
NVD
CVSS 3.1
9.0
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy