Vulnerabilities > Solidres

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-03	CVE-2023-1377	Unspecified vulnerability in Solidres The Solidres WordPress plugin through 0.9.4 does not sanitise and escape numerous parameter before outputting them back in pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin network low complexity solidres	6.1
2023-03-13	CVE-2023-1374	Unspecified vulnerability in Solidres The Solidres plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'currency_name' parameter in versions up to, and including, 0.9.4 due to insufficient input sanitization and output escaping. network low complexity solidres	4.8
2018-02-17	CVE-2018-5980	SQL Injection vulnerability in Solidres 2.5.1 SQL Injection exists in the Solidres 2.5.1 component for Joomla! via the direction parameter in a hub.search action. network low complexity solidres CWE-89 critical	9.8

Vulnerabilities > Solidres {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Solidres"}]}