Skip to main content

Wp Helper Premium

2 CVEs product

Monthly

CVE-2024-9065 MEDIUM This Month

The WP Helper Premium plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'whp_smtp_send_mail_test' function in all versions up to, and. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass WordPress Wp Helper Premium
NVD
CVSS 3.1
5.3
EPSS
0.5%
CVE-2023-0448 MEDIUM POC THREAT This Month

The WP Helper Lite WordPress plugin, in versions < 4.3, returns all GET parameters unsanitized in the response, resulting in a reflected cross-site scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Wp Helper Premium
NVD
CVSS 3.1
6.1
EPSS
44.5%
EPSS 0% CVSS 5.3
MEDIUM This Month

The WP Helper Premium plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'whp_smtp_send_mail_test' function in all versions up to, and. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass WordPress Wp Helper Premium
NVD
EPSS 45% CVSS 6.1
MEDIUM POC THREAT This Month

The WP Helper Lite WordPress plugin, in versions < 4.3, returns all GET parameters unsanitized in the response, resulting in a reflected cross-site scripting vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Wp Helper Premium
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy