Vulnerabilities > Supsystic > High

DATE CVE VULNERABILITY TITLE RISK
2020-04-23 CVE-2020-12075 Incorrect Default Permissions vulnerability in Supsystic Data Tables Generator
The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPress lacks capability checks for AJAX actions.
network
low complexity
supsystic CWE-276
8.8
8.8
2020-03-23 CVE-2020-9392 Incorrect Default Permissions vulnerability in Supsystic Pricing Table BY Supsystic 1.8.0/1.8.1
An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress.
network
low complexity
supsystic CWE-276
7.3
7.3
2020-02-25 CVE-2020-9394 Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Pricing Table BY Supsystic 1.8.0/1.8.1
An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress.
network
low complexity
supsystic CWE-352
8.8
8.8
2019-08-22 CVE-2016-10918 Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Photo Gallery
The gallery-by-supsystic plugin before 1.8.6 for WordPress has CSRF.
network
low complexity
supsystic CWE-352
8.8
8.8
2019-08-20 CVE-2016-10915 Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Popup
The popup-by-supsystic plugin before 1.7.9 for WordPress has CSRF.
network
low complexity
supsystic CWE-352
8.8
8.8
2019-08-14 CVE-2017-18512 Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Newsletter BY Supsystic
The newsletter-by-supsystic plugin before 1.1.8 for WordPress has CSRF.
network
low complexity
supsystic CWE-352
8.8
8.8