Vulnerabilities > Wpmanageninja > Ninja Tables > 4.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-31 | CVE-2024-12772 | Cross-site Scripting vulnerability in Wpmanageninja Ninja Tables The Ninja Tables WordPress plugin before 5.0.17 does not sanitize and escape a parameter before outputting it back in the page when importing a CSV, leading to a Cross Site Scripting vulnerability. | 5.4 |
| 2024-08-27 | CVE-2024-7304 | Cross-site Scripting vulnerability in Wpmanageninja Ninja Tables The Ninja Tables – Easiest Data Table Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 5.0.12 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-06-14 | CVE-2024-23504 | Unspecified vulnerability in Wpmanageninja Ninja Tables Missing Authorization vulnerability in WPManageNinja LLC Ninja Tables.This issue affects Ninja Tables: from n/a through 5.0.5. | 5.3 |
| 2024-06-11 | CVE-2024-23503 | Unspecified vulnerability in Wpmanageninja Ninja Tables Missing Authorization vulnerability in WPManageNinja LLC Ninja Tables.This issue affects Ninja Tables: from n/a through 5.0.6. | 4.3 |
| 2024-06-03 | CVE-2024-35635 | Unspecified vulnerability in Wpmanageninja Ninja Tables Server-Side Request Forgery (SSRF) vulnerability in WPManageNinja LLC Ninja Tables.This issue affects Ninja Tables: from n/a through 5.0.9. | 4.9 |
| 2023-05-25 | CVE-2022-47136 | Unspecified vulnerability in Wpmanageninja Ninja Tables Cross-Site Request Forgery (CSRF) vulnerability in WPManageNinja LLC Ninja Tables – Best Data Table Plugin for WordPress plugin <= 4.3.4 versions. | 8.8 |
| 2023-05-10 | CVE-2022-47137 | Cross-site Scripting vulnerability in Wpmanageninja Ninja Tables Auth. | 4.8 |