Vulnerabilities > Stockdio

DATE	CVE	VULNERABILITY TITLE	RISK
2025-01-30	CVE-2024-13349	Cross-site Scripting vulnerability in Stockdio Historical Chart The Stockdio Historical Chart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'stockdio-historical-chart' shortcode in all versions up to, and including, 2.8.18 due to insufficient input sanitization and output escaping on user supplied attributes. network low complexity stockdio CWE-79	5.4
2023-09-29	CVE-2023-41666	Unspecified vulnerability in Stockdio Stock Quotes List Auth. network low complexity stockdio	5.4
2021-01-19	CVE-2020-28707	Cross-site Scripting vulnerability in Stockdio Historical Chart The Stockdio Historical Chart plugin before 2.8.1 for WordPress is affected by Cross Site Scripting (XSS) via stockdio_chart_historical-wp.js in wp-content/plugins/stockdio-historical-chart/assets/ because the origin of a postMessage() event is not validated. network low complexity stockdio CWE-79	6.1

Vulnerabilities > Stockdio {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Stockdio"}]}