Vulnerabilities > Riverside > Http Headers > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-10 | CVE-2023-1208 | Unspecified vulnerability in Riverside Http Headers This HTTP Headers WordPress plugin before 1.18.11 allows arbitrary data to be written to arbitrary files, leading to a Remote Code Execution vulnerability. | 7.2 |
| 2023-05-15 | CVE-2023-1207 | Unspecified vulnerability in Riverside Http Headers This HTTP Headers WordPress plugin before 1.18.8 has an import functionality which executes arbitrary SQL on the server, leading to an SQL Injection vulnerability. | 7.2 |