Known Vulnerabilities for products from Getlasso
Listed below are 5 of the newest known vulnerabilities associated with the vendor "Getlasso".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-45606 json | Cross-Site Request Forgery (CSRF) vulnerability in Lasso Simple URLs plugin <= 120 versions. | 8.8 - HIGH | 2023-10-16 | 2023-10-18 |
| CVE-2023-40674 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2023-11-30 | 2023-12-05 |
| CVE-2023-40667 json | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Lasso Simple URLs plugin <= 117 versions. | 6.1 - MEDIUM | 2023-09-27 | 2023-09-28 |
| CVE-2023-0099 json | The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some ... | 6.1 - MEDIUM | 2023-02-13 | 2024-02-05 |
| CVE-2023-0098 json | The Simple URLs WordPress plugin before 115 does not escape some parameters before using them in various SQL statements used ... | 8.8 - HIGH | 2023-02-13 | 2023-11-07 |