Vulnerabilities > Graphpaperpress

DATE CVE VULNERABILITY TITLE RISK
2023-07-12 CVE-2021-4420 Unspecified vulnerability in Graphpaperpress Sell Media
The Sell Media plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.5.5.
network
low complexity
graphpaperpress
4.3
2020-08-14 CVE-2019-6112 Cross-site Scripting vulnerability in Graphpaperpress Sell Media
A Cross-site scripting (XSS) vulnerability in /inc/class-search.php in the Sell Media plugin v2.4.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the keyword parameter (aka $search_term or the Search field).
4.3