Known Vulnerabilities for products from Sandhillsdev
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Sandhillsdev".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-51684 json | 5.4 - MEDIUM | 2024-02-01 | 2024-02-06 | |
| CVE-2023-30869 json | Improper Authentication vulnerability in Easy Digital Downloads plugin allows unauth. Privilege Escalation. This issue affec... | 9.8 - CRITICAL | 2023-05-02 | 2023-05-09 |
| CVE-2023-23489 json | The Easy Digital Downloads WordPress Plugin, versions 3.1.0.2 & 3.1.0.3, is affected by an unauthenticated SQL injection vuln... | 9.8 - CRITICAL | 2023-01-20 | 2023-02-10 |
| CVE-2023-0380 json | The Easy Digital Downloads WordPress plugin before 3.1.0.5 does not validate and escape some of its block options before outp... | 5.4 - MEDIUM | 2023-02-21 | 2023-11-07 |
| CVE-2022-33900 json | PHP Object Injection vulnerability in Easy Digital Downloads plugin <= 3.0.1 at WordPress. | 7.2 - HIGH | 2022-08-22 | 2023-08-08 |
| CVE-2022-3600 json | The Easy Digital Downloads WordPress plugin before 3.1.0.2 does not validate data when its output in a CSV file, which could ... | 9.8 - CRITICAL | 2022-11-21 | 2023-11-07 |
| CVE-2022-2387 json | The Easy Digital Downloads WordPress plugin before 3.0 does not have CSRF check in place when deleting payment history, and d... | 4.3 - MEDIUM | 2022-11-07 | 2022-11-09 |
| CVE-2022-0707 json | The Easy Digital Downloads WordPress plugin before 2.11.6 does not have CSRF check in place when inserting payment notes, whi... | 4.3 - MEDIUM | 2022-04-18 | 2022-04-25 |
| CVE-2022-0706 json | The Easy Digital Downloads WordPress plugin before 2.11.6 does not sanitise and escape the Downloadable File Name in the Logs... | 4.8 - MEDIUM | 2022-04-18 | 2022-04-25 |
| CVE-2021-39354 json | The Easy Digital Downloads WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the $start_date and $end_date... | 4.8 - MEDIUM | 2021-10-21 | 2021-10-27 |
| CVE-2019-15116 json | The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging. | 6.1 - MEDIUM | 2019-08-16 | 2021-11-02 |
| CVE-2015-9536 json | The Easy Digital Downloads (EDD) Twenty-Twelve theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10,... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |
| CVE-2015-9535 json | The Easy Digital Downloads (EDD) Shoppette theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |
| CVE-2015-9534 json | The Easy Digital Downloads (EDD) Quota theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x b... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |
| CVE-2015-9533 json | The Easy Digital Downloads (EDD) Lattice theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |
| CVE-2015-9532 json | The Easy Digital Downloads (EDD) Digital Store theme for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10,... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |
| CVE-2015-9531 json | The Easy Digital Downloads (EDD) Wish Lists extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |
| CVE-2015-9530 json | The Easy Digital Downloads (EDD) Upload File extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.1... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |
| CVE-2015-9529 json | The Easy Digital Downloads (EDD) Stripe extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |
| CVE-2015-9528 json | The Easy Digital Downloads (EDD) Software Licensing extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x befor... | 6.1 - MEDIUM | 2019-10-23 | 2021-10-26 |