Vulnerabilities > Connections PRO > Connections Business Directory > 9.7

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-26	CVE-2023-29437	Unspecified vulnerability in Connections-Pro Connections Business Directory Auth. network low complexity connections-pro	5.4
2021-11-01	CVE-2021-24794	Cross-site Scripting vulnerability in Connections-Pro Connections Business Directory The Connections Business Directory WordPress plugin before 10.4.3 does not escape the Address settings when creating an Entry, which could allow high privilege users to perform Cross-Site Scripting when the unfiltered_html capability is disallowed. network low complexity connections-pro CWE-79	4.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.