Vulnerabilities > Webhammer

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-19	CVE-2024-8364	Cross-site Scripting vulnerability in Webhammer WP Custom Fields Search The WP Custom Fields Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpcfs-preset shortcode in all versions up to, and including, 1.2.35 due to insufficient input sanitization and output escaping on user supplied attributes. network low complexity webhammer CWE-79	5.4
2023-05-18	CVE-2022-47157	Cross-site Scripting vulnerability in Webhammer WP Custom Fields Search Auth. network low complexity webhammer CWE-79	4.8
2017-06-15	CVE-2017-9419	Cross-site Scripting vulnerability in Webhammer WP Custom Fields Search 0.3.28 Cross-site scripting (XSS) vulnerability in the Webhammer WP Custom Fields Search plugin 0.3.28 for WordPress allows remote attackers to inject arbitrary JavaScript via the cs-all-0 parameter. network low complexity webhammer CWE-79	6.1

Vulnerabilities > Webhammer {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Webhammer"}]}