Vulnerabilities > Veronalabs > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-12-28 | CVE-2023-27447 | Information Exposure vulnerability in Veronalabs WP SMS Exposure of Sensitive Information to an Unauthorized Actor vulnerability in VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc.This issue affects WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc: from n/a through 6.0.4. | 7.5 |
2023-03-27 | CVE-2023-0955 | Unspecified vulnerability in Veronalabs WP Statistics The WP Statistics WordPress plugin before 14.0 does not escape a parameter, which could allow authenticated users to perform SQL Injection attacks. | 8.8 |
2023-03-13 | CVE-2022-38074 | SQL Injection vulnerability in Veronalabs WP Statistics SQL Injection vulnerability in VeronaLabs WP Statistics plugin <= 13.2.10 versions. | 8.8 |
2023-01-23 | CVE-2022-4230 | SQL Injection vulnerability in Veronalabs WP Statistics The WP Statistics WordPress plugin before 13.2.9 does not escape a parameter, which could allow authenticated users to perform SQL Injection attacks. | 8.8 |
2019-08-14 | CVE-2017-18515 | SQL Injection vulnerability in Veronalabs WP Statistics The wp-statistics plugin before 12.0.8 for WordPress has SQL injection. | 7.5 |
2019-07-04 | CVE-2019-13275 | SQL Injection vulnerability in Veronalabs WP Statistics An issue was discovered in the VeronaLabs wp-statistics plugin before 12.6.7 for WordPress. | 7.5 |