Skip to main content

Wordpress Simple Html Sitemap

2 CVEs product

Monthly

CVE-2024-7385 HIGH PATCH This Week

The WordPress Simple HTML Sitemap plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 3.1 due to insufficient escaping on the user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

SQLi WordPress Wordpress Simple Html Sitemap
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2023-45067 MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress XSS Wordpress Simple Html Sitemap
NVD
CVSS 3.1
5.4
EPSS
0.3%
EPSS 1% CVSS 7.2
HIGH PATCH This Week

The WordPress Simple HTML Sitemap plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 3.1 due to insufficient escaping on the user. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity.

SQLi WordPress Wordpress Simple Html Sitemap
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress XSS Wordpress Simple Html Sitemap
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy