Vulnerabilities > Bestwebsoft > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-13 | CVE-2017-18494 | Cross-site Scripting vulnerability in Bestwebsoft Custom Search The custom-search-plugin plugin before 1.36 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-13 | CVE-2017-18493 | Cross-site Scripting vulnerability in Bestwebsoft Custom Admin Page 0.1/0.1.1 The custom-admin-page plugin before 0.1.2 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-13 | CVE-2017-18492 | Cross-site Scripting vulnerability in Bestwebsoft Contact Form TO DB The contact-form-to-db plugin before 1.5.7 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-13 | CVE-2017-18491 | Cross-site Scripting vulnerability in Bestwebsoft Contact Form The contact-form-plugin plugin before 4.0.6 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-13 | CVE-2017-18490 | Cross-site Scripting vulnerability in Bestwebsoft Contact Form Multi The contact-form-multi plugin before 1.2.1 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-13 | CVE-2016-10869 | Cross-site Scripting vulnerability in Bestwebsoft Contact Form The contact-form-plugin plugin before 4.0.2 for WordPress has XSS. | 4.3 |
| 2019-08-13 | CVE-2015-9295 | Cross-site Scripting vulnerability in Bestwebsoft Contact Form The contact-form-plugin plugin before 3.96 for WordPress has XSS. | 4.3 |
| 2019-08-13 | CVE-2013-7475 | Cross-site Scripting vulnerability in Bestwebsoft Contact Form The contact-form-plugin plugin before 3.52 for WordPress has XSS. | 4.3 |
| 2019-08-12 | CVE-2017-18505 | Cross-site Scripting vulnerability in Bestwebsoft Twitter Button The twitter-plugin plugin before 2.55 for WordPress has XSS. | 4.3 |
| 2019-08-12 | CVE-2017-18502 | Cross-site Scripting vulnerability in Bestwebsoft Subscriber The subscriber plugin before 1.3.5 for WordPress has multiple XSS issues. | 4.3 |