Vulnerabilities > Wpinventory

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-09	CVE-2023-34002	Unspecified vulnerability in Wpinventory WP Inventory Manager 2.1.0.13/2.1.0.8 Cross-Site Request Forgery (CSRF) vulnerability in WP Inventory Manager plugin <= 2.1.0.13 versions. network low complexity wpinventory	8.8
2023-08-16	CVE-2023-2123	Unspecified vulnerability in Wpinventory WP Inventory Manager 2.1.0.8 The WP Inventory Manager WordPress plugin before 2.1.0.13 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting. network low complexity wpinventory	6.1
2023-06-27	CVE-2023-2842	Unspecified vulnerability in Wpinventory WP Inventory Manager 2.1.0.13/2.1.0.8 The WP Inventory Manager WordPress plugin before 2.1.0.14 does not have CSRF checks, which could allow attackers to make logged-in admins delete Inventory Items via a CSRF attack network low complexity wpinventory	8.1
2023-05-08	CVE-2023-1806	Unspecified vulnerability in Wpinventory WP Inventory Manager 2.1.0.8 The WP Inventory Manager WordPress plugin before 2.1.0.12 does not sanitise and escape the message parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as administrators. network low complexity wpinventory	6.1

Vulnerabilities > Wpinventory {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Wpinventory"}]}