Vulnerabilities > Solwininfotech > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-07 | CVE-2022-45078 | Unspecified vulnerability in Solwininfotech User Blocker Improper Neutralization of Formula Elements in a CSV File vulnerability in Solwin Infotech User Blocker.This issue affects User Blocker: from n/a through 1.5.5. | 7.2 |
| 2023-10-16 | CVE-2023-5133 | Unspecified vulnerability in Solwininfotech User Activity LOG This user-activity-log-pro WordPress plugin before 2.3.4 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. | 7.5 |
| 2023-09-04 | CVE-2023-4279 | Unspecified vulnerability in Solwininfotech User Activity LOG This User Activity Log WordPress plugin before 1.6.7 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. | 7.5 |
| 2023-07-24 | CVE-2023-2761 | Unspecified vulnerability in Solwininfotech User Activity LOG The User Activity Log WordPress plugin before 1.6.3 does not properly sanitise and escape the `txtsearch` parameter before using it in a SQL statement in some admin pages, leading to a SQL injection exploitable by high privilege users such as admin. | 7.2 |