Vulnerabilities > Simplysymphony

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-26	CVE-2015-9423	Cross-site Scripting vulnerability in Simplysymphony Plugnedit 1.0/1.1/1.2 The PlugNedit Adaptive Editor plugin before 6.2.0 for WordPress has XSS via wp-admin/admin-ajax.php?action=simple_fields_field_type_post_dialog_load PlugneditBGColor, PlugneditEditorMargin, plugnedit_width, pnemedcount, or plugneditcontent parameters. network simplysymphony CWE-79	3.5
2019-09-26	CVE-2015-9422	Cross-Site Request Forgery (CSRF) vulnerability in Simplysymphony Plugnedit 1.0/1.1/1.2 The PlugNedit Adaptive Editor plugin before 6.2.0 for WordPress has CSRF with resultant XSS via wp-admin/admin-ajax.php?action=simple_fields_field_type_post_dialog_load plugnedit_width, pnemedcount, PlugneditBGColor, PlugneditEditorMargin, or plugneditcontent parameters. network simplysymphony CWE-352	4.3

Vulnerabilities > Simplysymphony {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Simplysymphony"}]}