Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bestwebsoft vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-0764
The Gallery by BestWebSoft WordPress plugin prior to 4.7.0 does not perform proper sanitization of gallery information, leading to a Stored Cross-Site Scription vulnerability. The attacker must have at least the privileges of the Author role.
Bestwebsoft Gallery
8.8
CVSSv3
CVE-2023-0765
The Gallery by BestWebSoft WordPress plugin prior to 4.7.0 does not properly escape values used in SQL queries, leading to an Blind SQL Injection vulnerability. The attacker must have at least the privileges of an Author, and the vendor's Slider plugin (https://wordpress.org...
Bestwebsoft Gallery
6.1
CVSSv3
CVE-2014-125103
A vulnerability was found in BestWebSoft Twitter Plugin up to 1.3.2 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function twttr_settings_page of the file twitter.php. The manipulation of the argument twttr_url_twitter/bws_license_key/bw...
Bestwebsoft Twitter
6.1
CVSSv3
CVE-2017-18516
The bws-linkedin plugin prior to 1.0.5 for WordPress has multiple XSS issues.
Bestwebsoft Linkedin
6.1
CVSSv3
CVE-2017-18517
The bws-pinterest plugin prior to 1.0.5 for WordPress has multiple XSS issues.
Bestwebsoft Pinterest
6.1
CVSSv3
CVE-2017-18518
The bws-smtp plugin prior to 1.1.0 for WordPress has multiple XSS issues.
Bestwebsoft Smtp
6.1
CVSSv3
CVE-2017-18529
The promobar plugin prior to 1.1.1 for WordPress has multiple XSS issues.
Bestwebsoft Promobar
6.1
CVSSv3
CVE-2017-18530
The rating-bws plugin prior to 0.2 for WordPress has multiple XSS issues.
Bestwebsoft Rating
6.1
CVSSv3
CVE-2017-18532
The realty plugin prior to 1.1.0 for WordPress has multiple XSS issues.
Bestwebsoft Realty
NA
CVE-2014-9283
The BestWebSoft Captcha plugin prior to 4.0.7 for WordPress allows remote malicious users to bypass the CAPTCHA protection mechanism and obtain administrative access via unspecified vectors.
Bestwebsoft Captcha
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »