Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
48031.4%HIGH

Related CVEs

8
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2019-25215The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file access controls in nearly every file of the plugin in versions up to, and including, 1.1.14. This makes it possible for unauthenticated attackers to call the files directly and perform a wide variety of unauthorized actions such as accessing a site's database and making changes.HIGH7.331.4%Oct 16, 2024
CVE-2023-51487Cross-Site Request Forgery (CSRF) vulnerability in ARI Soft ARI Stream Quiz.This issue affects ARI Stream Quiz: from n/a through 1.2.32.HIGH8.812.6%Mar 16, 2024
CVE-2024-24884Cross-Site Request Forgery (CSRF) vulnerability in ARI Soft Contact Form 7 Connector.This issue affects Contact Form 7 Connector: from n/a through 1.2.2.HIGH8.811.7%Feb 12, 2024
CVE-2024-0239The Contact Form 7 Connector WordPress plugin before 1.2.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against administrators.MEDIUM6.136.5%Jan 16, 2024
CVE-2023-52182Deserialization of Untrusted Data vulnerability in ARI Soft ARI Stream Quiz – WordPress Quizzes Builder.This issue affects ARI Stream Quiz – WordPress Quizzes Builder: from n/a through 1.3.0.HIGH8.845.5%Dec 31, 2023
CVE-2023-47835Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ARI Soft ARI Stream Quiz – WordPress Quizzes Builder plugin <= 1.2.32 versions.MEDIUM5.429.6%Nov 23, 2023
CVE-2022-0161The ARI Fancy Lightbox WordPress plugin before 1.3.9 does not sanitise and escape the msg parameter before outputting it back in an admin page, leading to a Reflected Cross-Site ScriptingMEDIUM6.1Mar 14, 2022
CVE-2020-19156Cross Site Scripting (XSS) in Ari Adminer v1 allows remote attackers to execute arbitrary code via the 'Title' parameter of the 'Add New Connections' component when the 'save()' function is called.MEDIUM5.452.8%Sep 15, 2021