Calculated Fields Form Vulnerability – Unauthenticated Stored Cross-Site Scripting – CVE-2024-2020 | WordPress Plugin Vulnerability Report

Plugin Name: Calculated Fields Form Key Information: Software Type: Plugin Software Slug: calculated-fields-form Software Status: Active Software Author: codepeople Software Downloads: 6,626,617 Active Installs: 60,000 Last Updated: March 1, 2024 Patched Versions: 5.1.57 Affected Versions: <= 5.1.56 Vulnerability Details: Name: Calculated Fields Form Professional <= 5.1.56 Title: Unauthenticated Stored Cross-Site Scripting Type: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N CVE: CVE-2024-2020…

Read More

AI Engine Vulnerability – Unauthenticated Stored Cross-Site Scripting – CVE-2024-0378 | WordPress Plugin Vulnerability Report

Plugin Name: AI Engine Key Information: Software Type: Plugin Software Slug: ai-engine Software Status: Active Software Author: tigroumeow Software Downloads: 1,820,267 Active Installs: 60,000 Last Updated: March 1, 2024 Patched Versions: 2.2.1 Affected Versions: <= 2.2.0 Vulnerability Details: Name: AI Engine <= 2.2.0 Title: Unauthenticated Stored Cross-Site Scripting Type: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE: CVE-2024-0378 CVSS Score: 6.5…

Read More

Amelia Vulnerability – Reflected Cross-Site Scripting – CVE-2024-1484 | WordPress Plugin Vulnerability Report

Plugin Name: Booking for Appointments and Events Calendar – Amelia Key Information: Software Type: Plugin Software Slug: ameliabooking Software Status: Active Software Author: ameliabooking Active Installs: 60,000 Last Updated: March 1, 2024 Patched Versions: 1.0.99 Affected Versions: <= 1.0.98 Vulnerability Details: Name: Booking for Appointments and Events Calendar – Amelia <= 1.0.98 Title: Reflected Cross-Site…

Read More