Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
insights from google pagespeed project insights from google pagespeed vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-1672
The Insights from Google PageSpeed WordPress plugin prior to 4.0.7 does not verify for CSRF before doing various actions such as deleting Custom URLs, which could allow malicious users to make a logged in admin perform such actions via CSRF attacks
Insights From Google Pagespeed Project Insights From Google Pagespeed
6.1
CVSSv3
CVE-2022-0431
The Insights from Google PageSpeed WordPress plugin prior to 4.0.4 does not sanitise and escape various parameters before outputting them back in attributes in the plugin's settings dashboard, leading to Reflected Cross-Site Scripting
Insights From Google Pagespeed Project Insights From Google Pagespeed
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started