Vulnerabilities > Oxilab

DATE CVE VULNERABILITY TITLE RISK
2022-10-21 CVE-2022-38104 Unspecified vulnerability in Oxilab Accordions
Auth.
network
low complexity
oxilab
7.2
2022-09-23 CVE-2022-2937 Cross-site Scripting vulnerability in Oxilab Image Hover Effects Ultimate
The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title & Description values that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping.
network
low complexity
oxilab CWE-79
5.4
2022-09-06 CVE-2022-2935 Cross-site Scripting vulnerability in Oxilab Image Hover Effects Ultimate
The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Media Image URL value that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping.
network
low complexity
oxilab CWE-79
5.4
2022-09-06 CVE-2022-2936 Cross-site Scripting vulnerability in Oxilab Image Hover Effects Ultimate
The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Video Link values that can be added to an Image Hover in versions up to, and including, 9.7.3 due to insufficient input sanitization and output escaping.
network
low complexity
oxilab CWE-79
5.4
2022-07-27 CVE-2022-33970 Unspecified vulnerability in Oxilab Shortcode Addons
Authenticated WordPress Options Change vulnerability in Biplob018 Shortcode Addons plugin <= 3.1.2 at WordPress.
network
low complexity
oxilab
7.2
2022-07-25 CVE-2022-36375 Unspecified vulnerability in Oxilab Responsive Tabs
Authenticated (high role user) WordPress Options Change vulnerability in Biplob Adhikari's Tabs plugin <= 3.6.0 at WordPress.
network
low complexity
oxilab
7.2
2022-07-25 CVE-2022-33969 Unspecified vulnerability in Oxilab Flipbox
Authenticated WordPress Options Change vulnerability in Biplob Adhikari's Flipbox plugin <= 2.6.0 at WordPress.
network
low complexity
oxilab
7.2
2022-07-21 CVE-2022-33198 Unspecified vulnerability in Oxilab Accordions
Unauthenticated WordPress Options Change vulnerability in Biplob Adhikari's Accordions plugin <= 2.0.2 at WordPress.
network
low complexity
oxilab
5.3
2022-07-21 CVE-2022-34487 Unspecified vulnerability in Oxilab Shortcode Addons
Unauthenticated Arbitrary Option Update vulnerability in biplob018's Shortcode Addons plugin <= 3.0.2 at WordPress.
network
low complexity
oxilab
5.3
2022-05-20 CVE-2022-29424 Cross-site Scripting vulnerability in Oxilab Image Hover Effects Ultimate
Authenticated (admin or higher user role) Reflected Cross-Site Scripting (XSS) vulnerability in Biplob Adhikari's Image Hover Effects Ultimate plugin <= 9.7.1 at WordPress.
network
low complexity
oxilab CWE-79
4.8