Vulnerabilities > Leechesnutt

DATE CVE VULNERABILITY TITLE RISK
2024-01-11 CVE-2023-6878 Unspecified vulnerability in Leechesnutt Slick Social Share Buttons 2.4.11
The Slick Social Share Buttons plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'dcssb_ajax_update' function in versions up to, and including, 2.4.11.
network
low complexity
leechesnutt
6.5
2023-10-10 CVE-2023-5468 Unspecified vulnerability in Leechesnutt Slick Contact Forms 1.3.7
The Slick Contact Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'dcscf-link' shortcode in versions up to, and including, 1.3.7 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
leechesnutt
5.4