Vulnerabilities > Magazine3 > AMP FOR WP
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-11 | CVE-2023-6782 | Cross-site Scripting vulnerability in Magazine3 AMP for WP The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 1.0.92 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2023-11-30 | CVE-2023-48321 | Unspecified vulnerability in Magazine3 AMP for WP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ahmed Kaludi, Mohammed Kaludi AMP for WP – Accelerated Mobile Pages allows Stored XSS.This issue affects AMP for WP – Accelerated Mobile Pages: from n/a through 1.0.88.1. | 5.4 |
| 2019-05-13 | CVE-2018-20838 | Cross-site Scripting vulnerability in Magazine3 AMP for WP ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored XSS. | 5.4 |