Vulnerabilities > Jmash > Postmash
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-15 | CVE-2024-27196 | Unspecified vulnerability in Jmash Postmash Cross Site Scripting (XSS) vulnerability in Joel Starnes postMash – custom post order allows Reflected XSS.This issue affects postMash – custom post order: from n/a through 1.2.0. | 6.1 |
| 2024-02-28 | CVE-2024-25927 | Unspecified vulnerability in Jmash Postmash Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Joel Starnes postMash – custom post order.This issue affects postMash – custom post order: from n/a through 1.2.0. | 9.8 |