Vulnerabilities > Onesignal
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-08-30 | CVE-2019-15827 | Cross-site Scripting vulnerability in Onesignal Onesignal-Free-Web-Push-Notifications 1.17.5 The onesignal-free-web-push-notifications plugin before 1.17.8 for WordPress has XSS via the subdomain parameter. | 3.5 |