Vulnerabilities > Codepeople

DATE	CVE	VULNERABILITY TITLE	RISK
2017-09-30	CVE-2015-9233	Cross-Site Request Forgery (CSRF) vulnerability in Codepeople CP Contact Form With Paypal The cp-contact-form-with-paypal (aka CP Contact Form with PayPal) plugin before 1.1.6 for WordPress has CSRF with resultant XSS, related to cp_contactformpp.php and cp_contactformpp_admin_int_list.inc.php. network codepeople CWE-352	6.8
2015-09-29	CVE-2015-7320	Cross-site Scripting vulnerability in Codepeople Appointment Booking Calendar Multiple cross-site scripting (XSS) vulnerabilities in cpabc_appointments_admin_int_bookings_list.inc.php in the Appointment Booking Calendar plugin before 1.1.8 for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. network codepeople CWE-79	4.3
2015-09-29	CVE-2015-7319	SQL Injection vulnerability in Codepeople Appointment Booking Calendar SQL injection vulnerability in cpabc_appointments_admin_int_calendar_list.inc.php in the Appointment Booking Calendar plugin before 1.1.8 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to updating the username. network low complexity codepeople CWE-89	7.5
2014-03-19	CVE-2013-5953	Cross-Site Scripting vulnerability in Codepeople COM Multicalendar 4.0.2/4.8.5 Multiple cross-site scripting (XSS) vulnerabilities in tmpl/layout_editevent.php in the Multi Calendar (com_multicalendar) component 4.0.2, and possibly 4.8.5 and earlier, for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) calid or (2) paletteDefault parameter in an editevent action to index.php. network codepeople joomla CWE-79	4.3

Vulnerabilities > Codepeople {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Codepeople"}]}

Vulnerabilities > Codepeople