Vulnerabilities > Gopiplus

DATE CVE VULNERABILITY TITLE RISK
2023-10-31 CVE-2023-5464 Unspecified vulnerability in Gopiplus Jquery Accordion Slideshow
The Jquery accordion slideshow plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 8.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
gopiplus
6.5
2023-10-25 CVE-2023-45764 Cross-site Scripting vulnerability in Gopiplus Scroll Post Excerpt
Auth.
network
low complexity
gopiplus CWE-79
4.8
2023-10-20 CVE-2023-4999 SQL Injection vulnerability in Gopiplus Horizontal Scrolling Announcement 9.2
The Horizontal scrolling announcement plugin for WordPress is vulnerable to SQL Injection via the plugin's [horizontal-scrolling] shortcode in versions up to, and including, 9.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
gopiplus CWE-89
8.8
2023-10-18 CVE-2023-45051 Cross-site Scripting vulnerability in Gopiplus Image Vertical Reel Scroll Slideshow
Auth.
network
low complexity
gopiplus CWE-79
4.8
2023-10-16 CVE-2023-44229 Cross-site Scripting vulnerability in Gopiplus Tiny Carosel Horizontal Slider
Auth.
network
low complexity
gopiplus CWE-79
4.8
2023-10-03 CVE-2023-25463 Cross-Site Request Forgery (CSRF) vulnerability in Gopiplus Wp-Tell-A-Friend-Popup-Form 7.1
Cross-Site Request Forgery (CSRF) vulnerability in Gopi Ramasamy WP tell a friend popup form plugin <= 7.1 versions.
network
low complexity
gopiplus CWE-352
8.8
2023-10-02 CVE-2023-44228 Cross-site Scripting vulnerability in Gopiplus Onclick Show Popup
Auth.
network
low complexity
gopiplus CWE-79
4.8
2023-10-02 CVE-2023-44230 Cross-site Scripting vulnerability in Gopiplus Popup Contact Form
Auth.
network
low complexity
gopiplus CWE-79
4.8
2023-10-02 CVE-2023-44265 Cross-site Scripting vulnerability in Gopiplus Popup Contact Form
Auth.
network
low complexity
gopiplus CWE-79
4.8
2023-10-02 CVE-2023-41736 Cross-site Scripting vulnerability in Gopiplus Email Posts to Subscribers 6.2
Auth.
network
low complexity
gopiplus CWE-79
4.8