Vulnerabilities > Permalink Manager Lite Project > Permalink Manager Lite > 2.4.3

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-28	CVE-2024-8195	Missing Authorization vulnerability in Permalink Manager Lite Project Permalink Manager Lite The Permalink Manager Lite plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'debug_data', 'debug_query', and 'debug_redirect' functions in all versions up to, and including, 2.4.4. network low complexity permalink-manager-lite-project CWE-862	5.3
2024-07-22	CVE-2024-37257	Unspecified vulnerability in Permalink Manager Lite Project Permalink Manager Lite Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Maciej Bis Permalink Manager Lite allows Reflected XSS.This issue affects Permalink Manager Lite: from n/a through 2.4.3.3. network low complexity permalink-manager-lite-project	6.1
2024-03-20	CVE-2024-2538	Missing Authorization vulnerability in Permalink Manager Lite Project Permalink Manager Lite The Permalink Manager Lite plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajax_save_permalink' function in all versions up to, and including, 2.4.3.1. network low complexity permalink-manager-lite-project CWE-862	4.3
2024-03-19	CVE-2024-29092	Unspecified vulnerability in Permalink Manager Lite Project Permalink Manager Lite Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Maciej Bis Permalink Manager Lite allows Reflected XSS.This issue affects Permalink Manager Lite: from n/a through 2.4.3. network low complexity permalink-manager-lite-project	6.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.