Vulnerabilities > Invite Anyone Project > Invite Anyone > High

DATE CVE VULNERABILITY TITLE RISK
2019-08-16 CVE-2017-18545 Improper Input Validation vulnerability in Invite Anyone Project Invite Anyone
The invite-anyone plugin before 1.3.16 for WordPress has incorrect escaping of untrusted Dashboard and front-end input.
network
low complexity
invite-anyone-project CWE-20
7.5
7.5
2019-08-16 CVE-2017-18544 Cross-Site Request Forgery (CSRF) vulnerability in Invite Anyone Project Invite Anyone
The invite-anyone plugin before 1.3.16 for WordPress has admin-panel CSRF.
network
low complexity
invite-anyone-project CWE-352
8.8
8.8