Vulnerabilities > Wpmanageninja > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-31 CVE-2023-51547 SQL Injection vulnerability in Wpmanageninja Fluent Support
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPManageNinja LLC Fluent Support – WordPress Helpdesk and Customer Support Ticket Plugin.This issue affects Fluent Support – WordPress Helpdesk and Customer Support Ticket Plugin: from n/a through 1.7.6.
network
low complexity
wpmanageninja CWE-89
7.2
7.2
2023-05-25 CVE-2022-47136 Cross-Site Request Forgery (CSRF) vulnerability in Wpmanageninja Ninja Tables
Cross-Site Request Forgery (CSRF) vulnerability in WPManageNinja LLC Ninja Tables – Best Data Table Plugin for WordPress plugin <= 4.3.4 versions.
network
low complexity
wpmanageninja CWE-352
8.8
8.8
2023-01-23 CVE-2022-4746 Authentication Bypass by Spoofing vulnerability in Wpmanageninja Fluentauth
The FluentAuth WordPress plugin before 1.0.2 prioritizes getting a visitor's IP address from certain HTTP headers over PHP's REMOTE_ADDR, which makes it possible to bypass the IP-based blocks set by the plugin.
network
low complexity
wpmanageninja CWE-290
7.5
7.5