Vulnerabilities > Tripetto

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-15	CVE-2024-10260	Cross-site Scripting vulnerability in Tripetto The Tripetto plugin for WordPress is vulnerable to Stored Cross-Site Scripting via File uploads in all versions up to, and including, 8.0.3 due to insufficient input sanitization and output escaping. network low complexity tripetto CWE-79	6.1
2022-04-26	CVE-2021-36895	Cross-site Scripting vulnerability in Tripetto Unauthenticated Cross-Site Scripting (XSS) vulnerability in Tripetto's Tripetto plugin <= 5.1.4 on WordPress via SVG image upload. network low complexity tripetto CWE-79	6.1

Vulnerabilities > Tripetto {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Tripetto"}]}