Vulnerabilities > Kunalnagar > Custom 404 PRO > 3.8.0

DATE CVE VULNERABILITY TITLE RISK
2024-08-01 CVE-2024-39646 Cross-site Scripting vulnerability in Kunalnagar Custom 404 PRO
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kunal Nagar Custom 404 Pro allows Reflected XSS.This issue affects Custom 404 Pro: from n/a through 3.11.1.
network
low complexity
kunalnagar CWE-79
6.1
6.1
2024-02-01 CVE-2023-51540 Unspecified vulnerability in Kunalnagar Custom 404 PRO
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kunal Nagar Custom 404 Pro allows Stored XSS.This issue affects Custom 404 Pro: from n/a through 3.10.0.
network
low complexity
kunalnagar
6.1
6.1
2023-08-30 CVE-2023-32740 Cross-site Scripting vulnerability in Kunalnagar Custom 404 PRO
Unauth.
network
low complexity
kunalnagar CWE-79
6.1
6.1
2023-06-27 CVE-2023-2032 Unspecified vulnerability in Kunalnagar Custom 404 PRO
The Custom 404 Pro WordPress plugin before 3.8.1 does not properly sanitize database inputs, leading to multiple SQL Injection vulnerabilities.
network
low complexity
kunalnagar
critical
 9.8
9.8