Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
connections-pro connections business directory vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-29437
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Steven A. Zahm Connections Business Directory plugin <= 10.4.36 versions.
Connections-pro Connections Business Directory
8
CVSSv3
CVE-2020-36503
The Connections Business Directory WordPress plugin prior to 9.7 does not validate or sanitise some connections' fields, which could lead to a CSV injection issue
Connections-pro Connections Business Directory
4.8
CVSSv3
CVE-2021-24794
The Connections Business Directory WordPress plugin prior to 10.4.3 does not escape the Address settings when creating an Entry, which could allow high privilege users to perform Cross-Site Scripting when the unfiltered_html capability is disallowed.
Connections-pro Connections Business Directory
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started