Vulnerabilities > Waspthemes

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-29	CVE-2024-43963	Cross-site Scripting vulnerability in Waspthemes Yellowpencil Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WaspThemes YellowPencil Visual CSS Style Editor allows Reflected XSS.This issue affects YellowPencil Visual CSS Style Editor: from n/a through 7.6.1. network low complexity waspthemes CWE-79	6.1
2023-05-10	CVE-2022-33961	Unspecified vulnerability in Waspthemes Visual CSS Style Editor Auth. network low complexity waspthemes	4.8
2019-07-05	CVE-2019-5984	Cross-Site Request Forgery (CSRF) vulnerability in Waspthemes Custom CSS PRO Cross-site request forgery (CSRF) vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. network low complexity waspthemes CWE-352	8.8

Vulnerabilities > Waspthemes {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Waspthemes"}]}