Vulnerabilities > Wpdeveloper

DATE	CVE	VULNERABILITY TITLE	RISK
2021-06-14	CVE-2021-24356	Unspecified vulnerability in Wpdeveloper Simple 301 Redirects In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, a lack of capability checks and insufficient nonce check on the AJAX action, simple301redirects/admin/activate_plugin, made it possible for authenticated users to activate arbitrary plugins installed on vulnerable sites. network low complexity wpdeveloper	8.8
2021-05-05	CVE-2021-24255	Unspecified vulnerability in Wpdeveloper Essential Addons for Elementor The Essential Addons for Elementor Lite WordPress Plugin before 4.5.4 has two widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, both via a similar method. network low complexity wpdeveloper	5.4
2019-08-12	CVE-2017-18504	Cross-Site Request Forgery (CSRF) vulnerability in Wpdeveloper Twitter Cards Meta The twitter-cards-meta plugin before 2.5.0 for WordPress has CSRF. network low complexity wpdeveloper CWE-352	8.8
2019-08-12	CVE-2017-18503	Cross-site Scripting vulnerability in Wpdeveloper Twitter Cards Meta The twitter-cards-meta plugin before 2.5.0 for WordPress has XSS. network low complexity wpdeveloper CWE-79	6.1

Vulnerabilities > Wpdeveloper {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Wpdeveloper"}]}