Vulnerabilities > Wpplugin > High

DATE CVE VULNERABILITY TITLE RISK
2024-10-18 CVE-2024-9593 Code Injection vulnerability in Wpplugin Time Clock
The Time Clock plugin and Time Clock Pro plugin for WordPress are vulnerable to Remote Code Execution in versions up to, and including, 1.2.2 (for Time Clock) and 1.1.4 (for Time Clock Pro) via the 'etimeclockwp_load_function_callback' function.
network
low complexity
wpplugin CWE-94
8.3
8.3
2023-07-10 CVE-2023-24395 Unspecified vulnerability in Wpplugin Contact Form 7 Redirect & Thank YOU Page
Cross-Site Request Forgery (CSRF) vulnerability in Scott Paterson Contact Form 7 Redirect & Thank You Page plugin <= 1.0.3 versions.
network
low complexity
wpplugin
8.8
8.8
2023-07-10 CVE-2023-24405 Unspecified vulnerability in Wpplugin Paypal & Stripe Add-On
Cross-Site Request Forgery (CSRF) vulnerability in Scott Paterson Contact Form 7 – PayPal & Stripe Add-on plugin <= 1.9.3 versions.
network
low complexity
wpplugin
8.8
8.8