Vulnerabilities > Projectcaruso

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-02	CVE-2024-7691	Cross-site Scripting vulnerability in Projectcaruso Flaming Forms The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks against administrators. network low complexity projectcaruso CWE-79	6.1
2024-09-02	CVE-2024-7692	Cross-site Scripting vulnerability in Projectcaruso Flaming Forms The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. network low complexity projectcaruso CWE-79	6.1
2024-06-14	CVE-2024-3966	Cross-site Scripting vulnerability in Projectcaruso Pray for ME 1.0.4 The Pray For Me WordPress plugin through 1.0.4 does not sanitise and escape some parameters, which could unauthenticated visitors to perform Cross-Site Scripting attacks that trigger when an admin visits the Prayer Requests in the WP Admin network low complexity projectcaruso CWE-79	6.1

Vulnerabilities > Projectcaruso {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Projectcaruso"}]}