High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-10-28	CVE-2024-50408	Deserialization of Untrusted Data vulnerability in Kibokolabs Namaste! LMS Deserialization of Untrusted Data vulnerability in Kiboko Labs Namaste! LMS allows Object Injection.This issue affects Namaste! LMS: from n/a through 2.6.3. network low complexity kibokolabs CWE-502	8.8
2023-11-16	CVE-2023-47686	Cross-Site Request Forgery (CSRF) vulnerability in Kibokolabs Arigato Autoresponder and Newsletter Cross-Site Request Forgery (CSRF) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.2.2 versions. network low complexity kibokolabs CWE-352	8.8
2020-03-10	CVE-2018-14502	SQL Injection vulnerability in Kibokolabs Chained Quiz controllers/quizzes.php in the Kiboko Chained Quiz plugin before 1.0.9 for WordPress allows remote unauthenticated users to execute arbitrary SQL commands via the 'answer' and 'answers' parameters. network low complexity kibokolabs CWE-89	7.5
2018-10-18	CVE-2018-18461	Code Injection vulnerability in Kibokolabs Arigato Autoresponder and Newsletter 2.5.1.7 The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to models/attachment.php. network low complexity kibokolabs CWE-94	7.5