Vulnerabilities > Freelancer Coder

DATE CVE VULNERABILITY TITLE RISK
2024-09-25 CVE-2024-7385 SQL Injection vulnerability in Freelancer-Coder Wordpress Simple Html Sitemap
The WordPress Simple HTML Sitemap plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 3.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
freelancer-coder CWE-89
7.2
2023-11-08 CVE-2023-46627 Unspecified vulnerability in Freelancer-Coder Wordpress Simple Html Sitemap 1.0/2.0/2.1
Unauth.
network
low complexity
freelancer-coder
6.1
2023-10-18 CVE-2023-45067 Cross-site Scripting vulnerability in Freelancer-Coder Wordpress Simple Html Sitemap 1.0/2.0/2.1
Auth.
network
low complexity
freelancer-coder CWE-79
5.4