Vulnerabilities > W3Eden

DATE CVE VULNERABILITY TITLE RISK
2022-04-11 CVE-2021-36896 Cross-site Scripting vulnerability in W3Eden Pricing Table 1.5.2
Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in Pricing Table (WordPress plugin) versions <= 1.5.2
network
low complexity
w3eden CWE-79
4.8
2019-08-13 CVE-2017-18497 Cross-site Scripting vulnerability in W3Eden Live Forms
The liveforms plugin before 3.4.0 for WordPress has XSS.
network
low complexity
w3eden CWE-79
6.1
2019-08-13 CVE-2015-9301 SQL Injection vulnerability in W3Eden Live Forms
The liveforms plugin before 3.2.0 for WordPress has SQL injection.
network
low complexity
w3eden CWE-89
critical
9.8