Vulnerabilities > Oxilab

DATE CVE VULNERABILITY TITLE RISK
2022-10-21 CVE-2022-38104 Unspecified vulnerability in Oxilab Accordions
Auth.
network
low complexity
oxilab
7.2
2022-07-27 CVE-2022-33970 Unspecified vulnerability in Oxilab Shortcode Addons
Authenticated WordPress Options Change vulnerability in Biplob018 Shortcode Addons plugin <= 3.1.2 at WordPress.
network
low complexity
oxilab
7.2
2022-07-25 CVE-2022-36375 Unspecified vulnerability in Oxilab Responsive Tabs
Authenticated (high role user) WordPress Options Change vulnerability in Biplob Adhikari's Tabs plugin <= 3.6.0 at WordPress.
network
low complexity
oxilab
7.2
2022-07-25 CVE-2022-33969 Unspecified vulnerability in Oxilab Flipbox
Authenticated WordPress Options Change vulnerability in Biplob Adhikari's Flipbox plugin <= 2.6.0 at WordPress.
network
low complexity
oxilab
7.2
2022-07-21 CVE-2022-33198 Unspecified vulnerability in Oxilab Accordions
Unauthenticated WordPress Options Change vulnerability in Biplob Adhikari's Accordions plugin <= 2.0.2 at WordPress.
network
low complexity
oxilab
5.3
2022-07-21 CVE-2022-34487 Unspecified vulnerability in Oxilab Shortcode Addons
Unauthenticated Arbitrary Option Update vulnerability in biplob018's Shortcode Addons plugin <= 3.0.2 at WordPress.
network
low complexity
oxilab
5.3
2022-05-20 CVE-2022-29424 Cross-site Scripting vulnerability in Oxilab Image Hover Effects Ultimate
Authenticated (admin or higher user role) Reflected Cross-Site Scripting (XSS) vulnerability in Biplob Adhikari's Image Hover Effects Ultimate plugin <= 9.7.1 at WordPress.
network
oxilab CWE-79
3.5
2022-01-24 CVE-2021-25031 Cross-site Scripting vulnerability in Oxilab Image Hover Effects Ultimate
The Image Hover Effects Ultimate (Image Gallery, Effects, Lightbox, Comparison or Magnifier) WordPress plugin before 9.7.1 does not escape the effects parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting
network
oxilab CWE-79
4.3