Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
premio my sticky elements vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0487
The My Sticky Elements WordPress plugin prior to 2.0.9 does not properly sanitise and escape a parameter before using it in a SQL statement when deleting messages, leading to a SQL injection exploitable by high privilege users such as admin
Premio My Sticky Elements
NA
CVE-2023-3248
The All-in-one Floating Contact Form WordPress plugin prior to 2.1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for ...
Premio My Sticky Elements
312
VMScore
CVE-2022-0148
The All-in-one Floating Contact Form, Call, Chat, and 50+ Social Icon Tabs WordPress plugin prior to 2.0.4 was vulnerable to reflected XSS on the my-sticky-elements-leads admin page.
Premio Mystickyelements
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5274
CVE-2024-35388
CVE-2024-35396
elevation of privilege
CVE-2021-47544
file upload
CVE-2021-47545
memory leak
CVE-2024-4956
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started