Vulnerabilities > WP Kama

DATE CVE VULNERABILITY TITLE RISK
2022-06-27 CVE-2017-20103 SQL Injection vulnerability in Wp-Kama Kama Click Counter
A vulnerability classified as critical has been found in Kama Click Counter Plugin up to 3.4.8.
network
low complexity
wp-kama CWE-89
8.8
2019-09-13 CVE-2017-18615 Cross-site Scripting vulnerability in Wp-Kama Kama Click Counter
The kama-clic-counter plugin before 3.5.0 for WordPress has XSS.
network
low complexity
wp-kama CWE-79
6.1
2019-09-13 CVE-2017-18614 SQL Injection vulnerability in Wp-Kama Kama Click Counter
The kama-clic-counter plugin 3.4.9 for WordPress has SQL injection via the admin.php order parameter.
network
high complexity
wp-kama CWE-89
8.1
2019-08-21 CVE-2017-18521 Cross-Site Request Forgery (CSRF) vulnerability in Wp-Kama Democracy Poll
The democracy-poll plugin before 5.4 for WordPress has CSRF via wp-admin/options-general.php?page=democracy-poll&subpage=l10n.
network
low complexity
wp-kama CWE-352
8.8
2019-08-20 CVE-2017-18520 Cross-site Scripting vulnerability in Wp-Kama Democracy Poll
The democracy-poll plugin before 5.4 for WordPress has XSS via update_l10n in admin/class.DemAdminInit.php.
network
low complexity
wp-kama CWE-79
6.1