Known Vulnerabilities for products from Webfactoryltd
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Webfactoryltd".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-5770 json | The WP Force SSL & HTTPS SSL Redirect plugin for WordPress is vulnerable to unauthorized modification of data due to a missin... | Not Provided | 2024-06-08 | 2026-04-08 |
| CVE-2024-5087 json | The Minimal Coming Soon – Coming Soon Page plugin for WordPress is vulnerable to unauthorized modification of data due to a... | Not Provided | 2024-06-08 | 2026-04-08 |
| CVE-2024-4661 json | The WP Reset plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the... | Not Provided | 2024-06-08 | 2026-04-08 |
| CVE-2024-1501 json | The Database Reset plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.2... | Not Provided | 2024-02-21 | 2026-04-08 |
| CVE-2024-1340 json | The Login Lockdown – Protect Login Form plugin for WordPress is vulnerable to unauthorized access of data due to a missing ... | Not Provided | 2024-02-29 | 2026-04-08 |
| CVE-2024-1075 json | The Minimal Coming Soon – Coming Soon Page plugin for WordPress is vulnerable to maintenance mode bypass and information di... | Not Provided | 2024-02-05 | 2026-04-08 |
| CVE-2023-50837 json | 7.2 - HIGH | 2023-12-29 | 2024-01-05 | |
| CVE-2023-6799 json | The WP Reset – Most Advanced WordPress Reset Tool plugin for WordPress is vulnerable to Sensitive Information Exposure in a... | Not Provided | 2024-04-09 | 2026-04-08 |
| CVE-2023-3601 json | The Simple Author Box WordPress plugin before 2.52 does not verify a user ID before outputting information about that user, l... | 4.3 - MEDIUM | 2023-08-14 | 2023-11-07 |
| CVE-2023-1913 json | The Maps Widget for Google Maps for WordPress is vulnerable to Stored Cross-Site Scripting via widget settings in versions up... | Not Provided | 2023-04-06 | 2026-04-08 |
| CVE-2023-0832 json | The Under Construction plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.9... | Not Provided | 2023-06-09 | 2026-04-08 |
| CVE-2023-0831 json | The Under Construction plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.9... | Not Provided | 2023-06-09 | 2026-04-08 |
| CVE-2022-3808 json | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further inv... | Not Provided | 2022-11-01 | 2023-11-07 |
| CVE-2022-1583 json | The External Links in New Window / New Tab WordPress plugin before 1.43 does not ensure window.opener is set to "null" when l... | 6.5 - MEDIUM | 2022-05-30 | 2022-06-09 |
| CVE-2022-1582 json | The External Links in New Window / New Tab WordPress plugin before 1.43 does not properly escape URLs it concatenates to oncl... | 6.1 - MEDIUM | 2022-05-30 | 2022-06-08 |
| CVE-2021-36909 json | Authenticated Database Reset vulnerability in WordPress WP Reset PRO Premium plugin (versions <= 5.98) allows any authenticat... | 8.1 - HIGH | 2021-11-18 | 2022-10-27 |
| CVE-2021-36908 json | Cross-Site Request Forgery (CSRF) vulnerability leading to Database Reset in WordPress WP Reset PRO Premium plugin (versions ... | 8.8 - HIGH | 2021-11-18 | 2023-07-24 |
| CVE-2021-24533 json | The Maintenance WordPress plugin before 4.03 does not sanitise or escape some of its settings, allowing high privilege users ... | 4.8 - MEDIUM | 2021-08-23 | 2021-08-26 |
| CVE-2021-24424 json | The WP Reset – Most Advanced WordPress Reset Tool WordPress plugin before 1.90 did not sanitise or escape its extra_data pa... | 5.4 - MEDIUM | 2021-07-12 | 2023-11-07 |
| CVE-2021-24142 json | Unvaludated input in the 301 Redirects - Easy Redirect Manager WordPress plugin, versions before 2.51, did not sanitise its "... | 7.2 - HIGH | 2021-03-18 | 2023-05-18 |
Known software with vulnerabilities from Webfactoryltd
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Webfactoryltd | 301 Redirects | - |
| Application | Webfactoryltd | Minimal Coming Soon Amp Maintenance Mode | 0.1 |
| Application | Webfactoryltd | Wp Database Reset | 1.0 |