Known Vulnerabilities for products from Fullworksplugins
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Fullworksplugins".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-25713 json | Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions. | 6.1 - MEDIUM | 2023-04-07 | 2023-11-07 |
| CVE-2023-25702 json | Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions. | 4.8 - MEDIUM | 2023-04-07 | 2023-11-07 |
| CVE-2023-23979 json | Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Event Manager plugin <= 9.7.4 versions. | 6.1 - MEDIUM | 2023-04-06 | 2023-11-07 |
| CVE-2023-23974 json | Cross-Site Request Forgery (CSRF) vulnerability in Fullworks Quick Event Manager plugin <= 9.7.4 affecting all registration a... | 5.4 - MEDIUM | 2023-03-01 | 2023-11-07 |
| CVE-2023-23889 json | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 ver... | 5.4 - MEDIUM | 2023-04-25 | 2023-04-28 |
| CVE-2023-23885 json | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Contact Form plugin <= 8.0.3.1 versio... | 5.4 - MEDIUM | 2023-04-07 | 2023-11-07 |
| CVE-2023-23491 json | The Quick Event Manager WordPress Plugin, version < 9.7.5, is affected by a reflected cross-site scripting vulnerability in t... | 6.1 - MEDIUM | 2023-01-20 | 2023-01-26 |
| CVE-2023-1554 json | The Quick Paypal Payments WordPress plugin before 5.7.26.4 does not sanitise and escape some of its settings, which could all... | 4.8 - MEDIUM | 2023-05-02 | 2023-11-07 |
| CVE-2022-47608 json | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Contact Form plugin <= 8.0.3.1 versions. | 4.8 - MEDIUM | 2023-04-25 | 2023-04-28 |
| CVE-2022-46863 json | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Event Manager plugin <= 9.6.4 versions. | 4.8 - MEDIUM | 2023-03-28 | 2023-11-07 |
| CVE-2022-37339 json | Authenticated (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Meet My Team plugin <= 2.0.5 at Wor... | 5.4 - MEDIUM | 2022-09-23 | 2022-09-26 |