Vulnerabilities > Quotes Collection Project

DATE CVE VULNERABILITY TITLE RISK
2021-12-13 CVE-2021-24861 Unspecified vulnerability in Quotes Collection Project Quotes Collection
The Quotes Collection WordPress plugin through 2.5.2 does not validate and escape the bulkcheck parameter before using it in a SQL statement, leading to a SQL injection
network
low complexity
quotes-collection-project
7.2
2019-09-13 CVE-2016-10952 Cross-site Scripting vulnerability in Quotes Collection Project Quotes Collection
The quotes-collection plugin before 2.0.6 for WordPress has XSS via the wp-admin/admin.php?page=quotes-collection page parameter.
network
low complexity
quotes-collection-project CWE-79
6.1