Vulnerabilities > WPB Show Core Project

DATE CVE VULNERABILITY TITLE RISK
2023-11-27 CVE-2023-4922 Unspecified vulnerability in WPB Show Core Project WPB Show Core
The WPB Show Core WordPress plugin through 2.2 is vulnerable to a local file inclusion via the `path` parameter.
network
low complexity
wpb-show-core-project
critical
9.8
2023-11-27 CVE-2023-5974 Server-Side Request Forgery (SSRF) vulnerability in WPB Show Core Project WPB Show Core
The WPB Show Core WordPress plugin through 2.2 is vulnerable to server-side request forgery (SSRF) via the `path` parameter.
network
low complexity
wpb-show-core-project CWE-918
critical
9.8
2022-11-14 CVE-2022-3484 Cross-site Scripting vulnerability in WPB Show Core Project WPB Show Core
The WPB Show Core WordPress plugin does not sanitize and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting.
network
low complexity
wpb-show-core-project CWE-79
6.1