Known Vulnerabilities for products from JoomUnited

Listed below are 19 of the newest known vulnerabilities associated with the vendor "JoomUnited".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2024-45456 json Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in JoomUnited WP Meta SEO ... Not Provided 2024-09-15 2026-04-01
CVE-2024-45455 json Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in JoomUnited WP Meta SEO ... Not Provided 2024-09-15 2026-04-01
CVE-2024-22148 json 6.1 - MEDIUM 2024-02-01 2024-02-03
CVE-2023-6962 json The WP Meta SEO plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.... Not Provided 2024-05-02 2026-04-08
CVE-2023-6961 json The WP Meta SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Referer’ header in all version... Not Provided 2024-05-02 2026-04-08
CVE-2023-1381 json The WP Meta SEO WordPress plugin before 4.5.5 does not validate image file paths before attempting to manipulate the image fi... 8.8 - HIGH 2023-04-10 2023-11-07
CVE-2023-1029 json The WP Meta SEO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.3. Thi... Not Provided 2023-02-24 2026-04-08
CVE-2023-1028 json The WP Meta SEO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.3. Thi... Not Provided 2023-02-28 2026-04-08
CVE-2023-1027 json The WP Meta SEO plugin for WordPress is vulnerable to unauthorized sitemap generation due to a missing capability check on th... Not Provided 2023-02-28 2026-04-08
CVE-2023-1026 json The WP Meta SEO plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the li... Not Provided 2023-02-28 2026-04-08
CVE-2023-1024 json The WP Meta SEO plugin for WordPress is vulnerable to unauthorized sitemap generation due to a missing capability check on th... Not Provided 2023-02-28 2026-04-08
CVE-2023-1023 json The WP Meta SEO plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check o... Not Provided 2023-02-28 2026-04-08
CVE-2023-1022 json The WP Meta SEO plugin for WordPress is vulnerable to unauthorized options update due to a missing capability check on the wp... Not Provided 2023-02-28 2026-04-08
CVE-2023-0876 json The WP Meta SEO WordPress plugin before 4.5.3 does not authorize several ajax actions, allowing low-privilege users to make u... 6.1 - MEDIUM 2023-03-20 2023-11-07
CVE-2023-0875 json The WP Meta SEO WordPress plugin before 4.5.3 does not properly sanitize and escape inputs into SQL queries, leading to a bli... 8.8 - HIGH 2023-03-20 2023-11-07
CVE-2022-47602 json Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in JoomUnited WP Table Manager plugin <= 3.5.2 versions. 5.4 - MEDIUM 2023-03-29 2023-11-07
CVE-2022-30337 json Cross-Site Request Forgery (CSRF) vulnerability in JoomUnited WP Meta SEO plugin <= 4.4.8 at WordPress allows an attacker to ... 4.3 - MEDIUM 2022-07-21 2022-07-25
CVE-2022-1093 json The WP Meta SEO WordPress plugin before 4.4.7 does not sanitise or escape the breadcrumb separator before outputting it to th... 4.8 - MEDIUM 2022-05-23 2022-05-28
CVE-2016-10913 json The wp-latest-posts plugin before 3.7.5 for WordPress has XSS. 6.1 - MEDIUM 2019-08-20 2019-08-22

Known software with vulnerabilities from JoomUnited

Type Vendor Product Version
ApplicationJoomunitedWp Latest Posts2.0.9