Vulnerabilities > Cleverplugins

DATE CVE VULNERABILITY TITLE RISK
2023-12-19 CVE-2023-47754 Missing Authorization vulnerability in Cleverplugins Delete Duplicate Posts
Missing Authorization vulnerability in Clever plugins Delete Duplicate Posts allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Delete Duplicate Posts: from n/a through 4.8.9.
network
low complexity
cleverplugins CWE-862
critical
9.8
2021-12-13 CVE-2021-24747 SQL Injection vulnerability in Cleverplugins SEO Booster
The SEO Booster WordPress plugin before 3.8 allows for authenticated SQL injection via the "fn_my_ajaxified_dataloader_ajax" AJAX request as the $_REQUEST['order'][0]['dir'] parameter is not properly escaped leading to blind and error-based SQL injections.
network
low complexity
cleverplugins CWE-89
6.5