Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jinson varghese behanan vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-8615
A CSRF vulnerability in the Tutor LMS plugin prior to 1.5.3 for WordPress can result in an attacker approving themselves as an instructor and performing other malicious actions (such as blocking legitimate instructors).
Themeum Tutor Lms
1 EDB exploit
NA
CVE-2020-103851
WordPress WPForms plugin version 1.5.9 suffers from a persistent cross site scripting vulnerability.
NA
CVE-2020-71081
LearnDash WordPress LMS plugin version 3.1.2 suffers from a cross site scripting vulnerability.
NA
CVE-2020-150381
WordPress Maintenance Mode by SeedProd plugin version 5.1.1 suffers from a persistent cross site scripting vulnerability.
6.1
CVSSv3
CVE-2020-8549
Stored XSS in the Strong Testimonials plugin prior to 2.40.1 for WordPress can result in an attacker performing malicious actions such as stealing session tokens.
Machothemes Strong Testimonials
5.4
CVSSv3
CVE-2020-10385
A stored cross-site scripting (XSS) vulnerability exists in the WPForms Contact Form (aka wpforms-lite) plugin prior to 1.5.9 for WordPress.
Wpforms Contact Form
1 EDB exploit
NA
CVE-2020-161571
Nagios Log Server version 2.1.6 suffers from a persistent cross site scripting vulnerability.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started