Vulnerabilities > Wpdevart
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-06 | CVE-2022-47428 | Unspecified vulnerability in Wpdevart Booking Calendar Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WpDevArt Booking calendar, Appointment Booking System allows SQL Injection.This issue affects Booking calendar, Appointment Booking System: from n/a through 3.2.7. | 9.8 |
| 2023-10-26 | CVE-2023-46075 | Unspecified vulnerability in Wpdevart Contact Form Builder 2.1.6 Unauth. | 6.1 |
| 2023-10-18 | CVE-2023-45630 | Unspecified vulnerability in Wpdevart Gallery Unauth. | 6.1 |
| 2023-10-16 | CVE-2023-45629 | Cross-Site Request Forgery (CSRF) vulnerability in Wpdevart Gallery - Image and Video Gallery With Thumbnails Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 versions. | 8.8 |
| 2023-06-05 | CVE-2023-0900 | Unspecified vulnerability in Wpdevart Pricing Table Builder 1.1.5/1.1.6 The Pricing Table Builder WordPress plugin through 1.1.6 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high-privilege users such as admins. | 7.2 |
| 2023-04-06 | CVE-2023-24387 | Unspecified vulnerability in Wpdevart Organization Chart Auth. | 4.8 |
| 2023-04-06 | CVE-2023-24002 | Unspecified vulnerability in Wpdevart Youtube Embed, Playlist and Popup Auth. | 4.8 |
| 2023-04-06 | CVE-2023-24004 | Unspecified vulnerability in Wpdevart Download Image and Video Lightbox, Image Popup Auth. | 4.8 |
| 2023-04-06 | CVE-2023-23972 | Unspecified vulnerability in Wpdevart Social Like BOX and Page Auth. | 4.8 |
| 2023-04-04 | CVE-2023-23870 | Unspecified vulnerability in Wpdevart Responsive Vertical Icon Menu Auth. | 4.8 |