Vulnerabilities > Iptanus > Wordpress File Upload > 2.5.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-07 | CVE-2018-9844 | Cross-site Scripting vulnerability in Iptanus Wordpress File Upload The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress mishandles Settings attributes, leading to XSS. | 4.3 |
| 2018-04-01 | CVE-2018-9172 | Cross-site Scripting vulnerability in Iptanus Wordpress File Upload The Iptanus WordPress File Upload plugin before 4.3.3 for WordPress mishandles shortcode attributes. | 3.5 |