Vulnerabilities > Markjaquith

DATE CVE VULNERABILITY TITLE RISK
2024-10-30 CVE-2024-8792 Cross-site Scripting vulnerability in Markjaquith Subscribe to Comments
The Subscribe to Comments plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.3.
network
low complexity
markjaquith CWE-79
6.1
2023-03-05 CVE-2006-10001 Unspecified vulnerability in Markjaquith Subscribe to Comments
A vulnerability, which was classified as problematic, was found in Subscribe to Comments Plugin up to 2.0.7 on WordPress.
network
low complexity
markjaquith
5.4