Vulnerabilities > Presscustomizr

DATE	CVE	VULNERABILITY TITLE	RISK
2023-10-20	CVE-2020-36753	Cross-Site Request Forgery (CSRF) vulnerability in Presscustomizr Hueman The Hueman theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.6.3. network low complexity presscustomizr CWE-352	4.3
2023-10-20	CVE-2020-36755	Cross-Site Request Forgery (CSRF) vulnerability in Presscustomizr Customizr The Customizr theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.3.0. network low complexity presscustomizr CWE-352	4.3
2023-02-21	CVE-2022-4784	Cross-site Scripting vulnerability in Presscustomizr Hueman Addons The Hueman Addons WordPress plugin through 2.3.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks network low complexity presscustomizr CWE-79	5.4
2022-04-11	CVE-2022-0314	Cross-site Scripting vulnerability in Presscustomizr Nimble Page Builder The Nimble Page Builder WordPress plugin before 3.2.2 does not sanitise and escape the preview-level-guid parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting network presscustomizr CWE-79	4.3

Vulnerabilities > Presscustomizr {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Presscustomizr"}]}