Vulnerabilities > Swifty Page Manager Project

DATE CVE VULNERABILITY TITLE RISK
2023-01-05 CVE-2023-0087 Unspecified vulnerability in Swifty Page Manager Project Swifty Page Manager 3.0.1
The Swifty Page Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘spm_plugin_options_page_tree_max_width’ parameter in versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping.
network
low complexity
swifty-page-manager-project
4.8
2023-01-05 CVE-2023-0088 Cross-Site Request Forgery (CSRF) vulnerability in Swifty Page Manager Project Swifty Page Manager 3.0.1
The Swifty Page Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.1.
network
low complexity
swifty-page-manager-project CWE-352
8.8