Vulnerabilities > Ithemes > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-28 | CVE-2015-9369 | Cross-site Scripting vulnerability in Ithemes Easy US Sales Taxes Easy US Sales Taxes Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). | 6.1 |
| 2019-08-28 | CVE-2015-9368 | Cross-site Scripting vulnerability in Ithemes Easy EU Value Added (Vat) Taxes Easy EU Value Added (VAT) Taxes Add-on for iThemes Exchange before 1.2.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). | 6.1 |
| 2019-08-28 | CVE-2015-9367 | Cross-site Scripting vulnerability in Ithemes Easy Canadian Sales Taxes Easy Canadian Sales Taxes Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). | 6.1 |
| 2019-08-28 | CVE-2015-9366 | Cross-site Scripting vulnerability in Ithemes Custom URL Tracking Custom URL Tracking Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). | 6.1 |
| 2019-08-28 | CVE-2015-9365 | Cross-site Scripting vulnerability in Ithemes Authorize.Net Authorize.net Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). | 6.1 |
| 2019-08-28 | CVE-2015-9363 | Cross-site Scripting vulnerability in Ithemes Exchange iThemes Exchange before 1.12.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). | 6.1 |