Vulnerabilities > Permalink Manager Lite Project > Permalink Manager Lite > 2.2.15
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-14 | CVE-2022-4410 | Cross-site Scripting vulnerability in Permalink Manager Lite Project Permalink Manager Lite The Permalink Manager Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including 2.2.20.3 due to improper output escaping on post/page/media titles. | 5.4 |
| 2022-11-18 | CVE-2022-41781 | Unspecified vulnerability in Permalink Manager Lite Project Permalink Manager Lite Broken Access Control vulnerability in Permalink Manager Lite plugin <= 2.2.20 on WordPress. | 9.8 |
| 2022-11-16 | CVE-2022-4021 | Cross-Site Request Forgery (CSRF) vulnerability in Permalink Manager Lite Project Permalink Manager Lite The Permalink Manager Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.2.20.1. | 4.3 |