Vulnerabilities > Permalink Manager Lite Project > Permalink Manager Lite > 2.2.19.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-28 | CVE-2024-8195 | Missing Authorization vulnerability in Permalink Manager Lite Project Permalink Manager Lite The Permalink Manager Lite plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'debug_data', 'debug_query', and 'debug_redirect' functions in all versions up to, and including, 2.4.4. | 5.3 |
| 2024-07-22 | CVE-2024-37257 | Unspecified vulnerability in Permalink Manager Lite Project Permalink Manager Lite Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Maciej Bis Permalink Manager Lite allows Reflected XSS.This issue affects Permalink Manager Lite: from n/a through 2.4.3.3. | 6.1 |
| 2024-03-20 | CVE-2024-2538 | Missing Authorization vulnerability in Permalink Manager Lite Project Permalink Manager Lite The Permalink Manager Lite plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajax_save_permalink' function in all versions up to, and including, 2.4.3.1. | 4.3 |
| 2024-03-19 | CVE-2024-29092 | Unspecified vulnerability in Permalink Manager Lite Project Permalink Manager Lite Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Maciej Bis Permalink Manager Lite allows Reflected XSS.This issue affects Permalink Manager Lite: from n/a through 2.4.3. | 6.1 |
| 2022-12-14 | CVE-2022-4410 | Cross-site Scripting vulnerability in Permalink Manager Lite Project Permalink Manager Lite The Permalink Manager Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including 2.2.20.3 due to improper output escaping on post/page/media titles. | 5.4 |
| 2022-11-18 | CVE-2022-41781 | Unspecified vulnerability in Permalink Manager Lite Project Permalink Manager Lite Broken Access Control vulnerability in Permalink Manager Lite plugin <= 2.2.20 on WordPress. | 9.8 |
| 2022-11-16 | CVE-2022-4021 | Cross-Site Request Forgery (CSRF) vulnerability in Permalink Manager Lite Project Permalink Manager Lite The Permalink Manager Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.2.20.1. | 4.3 |