Skip to main content

Tooltipy

2 CVEs product

Monthly

CVE-2018-1000512 MEDIUM POC This Month

Tooltipy Tooltipy (tooltips for WP) version 5 contains a Cross Site Scripting (XSS) vulnerability in Glossary shortcode that can result in could allow anybody to do almost anything an admin can. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Tooltipy
NVD
CVSS 3.0
6.1
EPSS
0.8%
CVE-2018-1000505 MEDIUM POC This Month

Tooltipy (tooltips for WP) version 5 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page that can result in could allow anybody to duplicate posts. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Tooltipy
NVD
CVSS 3.0
6.5
EPSS
0.5%
EPSS 1% CVSS 6.1
MEDIUM POC This Month

Tooltipy Tooltipy (tooltips for WP) version 5 contains a Cross Site Scripting (XSS) vulnerability in Glossary shortcode that can result in could allow anybody to do almost anything an admin can. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Tooltipy
NVD
EPSS 1% CVSS 6.5
MEDIUM POC This Month

Tooltipy (tooltips for WP) version 5 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page that can result in could allow anybody to duplicate posts. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Tooltipy
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy