Vulnerabilities > Wpulike

DATE CVE VULNERABILITY TITLE RISK
2022-11-30 CVE-2022-45842 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Wpulike WP Ulike
Unauth.
network
high complexity
wpulike CWE-367
3.7
2018-06-26 CVE-2018-1000511 Incorrect Permission Assignment for Critical Resource vulnerability in Wpulike Ulike 2.8.1/3.1
WP ULike version 2.8.1, 3.1 contains a Incorrect Access Control vulnerability in AJAX that can result in allows anybody to delete any row in certain tables.
network
low complexity
wpulike CWE-732
5.5
2018-06-26 CVE-2018-1000508 Cross-site Scripting vulnerability in Wpulike Ulike 2.8.1/3.1
WP ULike version 2.8.1, 3.1 contains a Cross Site Scripting (XSS) vulnerability in Settings screen that can result in allows unauthorised users to do almost anything an admin can.
network
wpulike CWE-79
3.5