Skip to main content

Handl Utm Grabber

2 CVEs product

Monthly

CVE-2026-57351 HIGH This Week

Stored/reflected cross-site scripting in the HandL UTM Grabber WordPress plugin (versions 2.9.2 and earlier) allows remote unauthenticated attackers to inject malicious JavaScript that executes in a victim's browser after user interaction, per PR:N/UI:R in the CVSS vector. The scope-change flag (S:C) indicates injected script can affect resources beyond the vulnerable component, such as authenticated admin sessions. No public exploit has been identified at time of analysis and the vulnerability is not listed in CISA KEV.

XSS Handl Utm Grabber
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2019-15769 HIGH This Week

The handl-utm-grabber plugin before 2.6.5 for WordPress has CSRF via add_option and update_option. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Handl Utm Grabber
NVD
CVSS 3.0
8.8
EPSS
0.8%
EPSS 0% CVSS 7.1
HIGH This Week

Stored/reflected cross-site scripting in the HandL UTM Grabber WordPress plugin (versions 2.9.2 and earlier) allows remote unauthenticated attackers to inject malicious JavaScript that executes in a victim's browser after user interaction, per PR:N/UI:R in the CVSS vector. The scope-change flag (S:C) indicates injected script can affect resources beyond the vulnerable component, such as authenticated admin sessions. No public exploit has been identified at time of analysis and the vulnerability is not listed in CISA KEV.

XSS Handl Utm Grabber
NVD
EPSS 1% CVSS 8.8
HIGH This Week

The handl-utm-grabber plugin before 2.6.5 for WordPress has CSRF via add_option and update_option. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Handl Utm Grabber
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy