Vulnerabilities > Wpmanageninja

DATE CVE VULNERABILITY TITLE RISK
2025-01-31 CVE-2024-12772 Cross-site Scripting vulnerability in Wpmanageninja Ninja Tables
The Ninja Tables WordPress plugin before 5.0.17 does not sanitize and escape a parameter before outputting it back in the page when importing a CSV, leading to a Cross Site Scripting vulnerability.
network
low complexity
wpmanageninja CWE-79
5.4
2024-11-01 CVE-2024-47302 Missing Authorization vulnerability in Wpmanageninja Fluent Support
Missing Authorization vulnerability in WPManageNinja LLC Fluent Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fluent Support: from n/a through 1.8.0.
network
low complexity
wpmanageninja CWE-862
critical
9.8
2024-08-27 CVE-2024-7304 Cross-site Scripting vulnerability in Wpmanageninja Ninja Tables
The Ninja Tables – Easiest Data Table Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 5.0.12 due to insufficient input sanitization and output escaping.
network
low complexity
wpmanageninja CWE-79
5.4
2024-06-14 CVE-2024-23504 Unspecified vulnerability in Wpmanageninja Ninja Tables
Missing Authorization vulnerability in WPManageNinja LLC Ninja Tables.This issue affects Ninja Tables: from n/a through 5.0.5.
network
low complexity
wpmanageninja
5.3
2024-06-11 CVE-2024-23503 Unspecified vulnerability in Wpmanageninja Ninja Tables
Missing Authorization vulnerability in WPManageNinja LLC Ninja Tables.This issue affects Ninja Tables: from n/a through 5.0.6.
network
low complexity
wpmanageninja
4.3
2024-06-03 CVE-2024-35635 Unspecified vulnerability in Wpmanageninja Ninja Tables
Server-Side Request Forgery (SSRF) vulnerability in WPManageNinja LLC Ninja Tables.This issue affects Ninja Tables: from n/a through 5.0.9.
network
low complexity
wpmanageninja
4.9
2024-03-29 CVE-2024-30430 Unspecified vulnerability in Wpmanageninja Fluentcrm
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Email Newsletter Team - FluentCRM Fluent CRM allows Stored XSS.This issue affects Fluent CRM: from n/a through 2.8.44.
network
low complexity
wpmanageninja
4.8
2024-02-05 CVE-2023-6953 Cross-site Scripting vulnerability in Wpmanageninja PDF Generator for Fluent Forms
The PDF Generator For Fluent Forms – The Contact Form Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the header, PDF body and footer content parameters in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping.
network
low complexity
wpmanageninja CWE-79
5.4
2023-12-31 CVE-2023-51547 Unspecified vulnerability in Wpmanageninja Fluent Support
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPManageNinja LLC Fluent Support – WordPress Helpdesk and Customer Support Ticket Plugin.This issue affects Fluent Support – WordPress Helpdesk and Customer Support Ticket Plugin: from n/a through 1.7.6.
network
low complexity
wpmanageninja
7.2
2023-07-12 CVE-2023-3087 Unspecified vulnerability in Wpmanageninja Fluentsmtp
The FluentSMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an email subject in versions up to, and including, 2.2.4 due to insufficient input sanitization and output escaping.
network
low complexity
wpmanageninja
6.1