Vulnerabilities > Daily Prayer Time Project

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-12	CVE-2023-27632	Cross-Site Request Forgery (CSRF) vulnerability in Daily Prayer Time Project Daily Prayer Time Cross-Site Request Forgery (CSRF) vulnerability in mmrs151 Daily Prayer Time plugin <= 2023.03.08 versions. network low complexity daily-prayer-time-project CWE-352	8.8
2023-06-22	CVE-2023-27631	Cross-site Scripting vulnerability in Daily Prayer Time Project Daily Prayer Time Auth. network low complexity daily-prayer-time-project CWE-79	5.4
2022-04-18	CVE-2022-0785	SQL Injection vulnerability in Daily Prayer Time Project Daily Prayer Time The Daily Prayer Time WordPress plugin before 2022.03.01 does not sanitise and escape the month parameter before using it in a SQL statement via the get_monthly_timetable AJAX action (available to unauthenticated users), leading to an unauthenticated SQL injection network low complexity daily-prayer-time-project CWE-89	7.5
2021-09-13	CVE-2021-24523	Cross-site Scripting vulnerability in Daily Prayer Time Project Daily Prayer Time The Daily Prayer Time WordPress plugin before 2021.08.10 does not sanitise or escape some of its settings before outputting them in the page, leading to Authenticated Stored Cross-Site Scripting issues. network daily-prayer-time-project CWE-79	3.5

Vulnerabilities > Daily Prayer Time Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Daily Prayer Time Project"}]}