Vulnerabilities > Flowpaper > Flowpaper > 1.8.5

DATE CVE VULNERABILITY TITLE RISK
2023-10-20 CVE-2023-5200 Cross-site Scripting vulnerability in Flowpaper
The flowpaper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'flipbook' shortcode in versions up to, and including, 2.0.3 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
flowpaper CWE-79
5.4
5.4
2023-09-04 CVE-2023-40197 Cross-site Scripting vulnerability in Flowpaper
Auth.
network
low complexity
flowpaper CWE-79
5.4
5.4