Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lite vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-4635
The EventON plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in versions up to, and including, 2.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated malicious users to inj...
Myeventon Eventon-lite
NA
CVE-2023-7154
The Hubbub Lite (formerly Grow Social) WordPress plugin prior to 1.32.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (f...
Morehubbub Hubbub Lite
NA
CVE-2023-45006
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ByConsole WooODT Lite – WooCommerce Order Delivery or Pickup with Date Time Location plugin <= 2.4.6 versions.
Byconsole Wooodt Lite
NA
CVE-2023-44397
CloudExplorer Lite is an open source, lightweight cloud management platform. Prior to version 1.4.1, the gateway filter of CloudExplorer Lite uses a controller with path starting with `matching/API/`, which can cause a permission bypass. Version 1.4.1 contains a patch for this is...
Fit2cloud Cloudexplorer Lite
NA
CVE-2023-3423
Weak Password Requirements in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v 1.2.0.
Fit2cloud Cloudexplorer Lite
NA
CVE-2023-34240
Cloudexplorer-lite is an open source cloud software stack. Weak passwords can be easily guessed and are an easy target for brute force attacks. This can lead to an authentication system failure and compromise system security. Versions of cloudexplorer-lite before 1.2.0 did not en...
Fit2cloud Cloudexplorer Lite
4.3
CVSSv2
CVE-2015-9407
The xpinner-lite plugin up to and including 2.2 for WordPress has xpinner-lite.php XSS.
Cyberseo Xpinner Lite
4.3
CVSSv2
CVE-2015-9408
The xpinner-lite plugin up to and including 2.2 for WordPress has wp-admin/options-general.php CSRF with resultant XSS.
Cyberseo Xpinner Lite
4.3
CVSSv2
CVE-2020-17362
search.php in the Nova Lite theme prior to 1.3.9 for WordPress allows Reflected XSS.
Themeinprogress Nova Lite
NA
CVE-2022-36867
Improper access control vulnerability in Editor Lite prior to version 4.0.40.14 allows malicious users to access sensitive information.
Samsung Editor Lite
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »