Vulnerabilities > Xnau

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-19	CVE-2023-48751	Unspecified vulnerability in Xnau Participants Database Missing Authorization, Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database allows Accessing Functionality Not Properly Constrained by ACLs, Cross Site Request Forgery.This issue affects Participants Database: from n/a through 2.5.5. network low complexity xnau	8.8
2023-11-09	CVE-2023-31235	Unspecified vulnerability in Xnau Participants Database Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database plugin <= 2.4.9 versions. network low complexity xnau	8.8
2023-02-28	CVE-2022-47612	Cross-Site Request Forgery (CSRF) vulnerability in Xnau Participants Database Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database plugin <= 2.4.5 leads to list column update. network low complexity xnau CWE-352	4.3
2020-02-11	CVE-2020-8596	SQL Injection vulnerability in Xnau Participants Database participants-database.php in the Participants Database plugin 1.9.5.5 and previous versions for WordPress has a time-based SQL injection vulnerability via the ascdesc, list_filter_count, or sortBy parameters. network high complexity xnau CWE-89	7.5
2017-09-04	CVE-2017-14126	Cross-site Scripting vulnerability in Xnau Participants Database 1.7.5.10 The Participants Database plugin before 1.7.5.10 for WordPress has XSS. network low complexity xnau CWE-79	6.1

Vulnerabilities > Xnau {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Xnau"}]}