Vulnerabilities > Fastlinemedia > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-26 | CVE-2023-5798 | Unspecified vulnerability in Fastlinemedia Assistant The Assistant WordPress plugin before 1.4.4 does not validate a parameter before making a request to it via wp_remote_get(), which could allow users with a role as low as Editor to perform SSRF attacks | 8.8 |
| 2023-05-08 | CVE-2023-1347 | Unspecified vulnerability in Fastlinemedia Customizer Export/Import The Customizer Export/Import WordPress plugin before 0.9.6 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present | 7.2 |