Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

fatcatapps vulnerabilities and exploits

(subscribe to this query)
4.8
CVSSv3

CVE-2022-40311

Auth. (admin+) Stored Cross-Site Scripting (XSS) in Fatcat Apps Analytics Cat plugin <= 1.0.9 on WordPress.
Fatcatapps Analytics Cat
4.3
CVSSv3

CVE-2022-27855

Cross-Site Request Forgery (CSRF) vulnerability in Fatcat Apps Analytics Cat plugin <= 1.0.9 on WordPress allows Plugin Settings Change.
Fatcatapps Analytics Cat
6.1
CVSSv3

CVE-2024-8740

The GetResponse Forms by Optin Cat plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.5.6. This makes it possible for unauthenticated malicious users ...
Fatcatapps Getresponse Forms
9
CVSSv3

CVE-2021-24922

The Pixel Cat WordPress plugin prior to 2.6.2 does not have CSRF check when saving its settings, and did not sanitise as well as escape some of them, which could allow malicious user to make a logged in admin change them and perform Cross-Site Scripting attacks
Fatcatapps Pixel Cat
4.8
CVSSv3

CVE-2021-24972

The Pixel Cat WordPress plugin prior to 2.6.3 does not escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed
Fatcatapps Pixel Cat
6.1
CVSSv3

CVE-2024-8544

The Pixel Cat – Conversion Pixel Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 3.0.5. This makes it possible for unauthenticated mali...
Fatcatapps Pixel Cat
5.4
CVSSv3

CVE-2022-4654

The Pricing Tables WordPress Plugin WordPress plugin prior to 3.2.3 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.
Fatcatapps Pricing Tables
6.5
CVSSv3

CVE-2021-25098

The Pricing Tables WordPress Plugin WordPress plugin prior to 3.1.3 does not verify the CSRF nonce when removing posts, allowing malicious users to make a logged in admin remove arbitrary posts from the blog via a CSRF attack, which will be put in the trash
Fatcatapps Easy Pricing Tables
4.8
CVSSv3

CVE-2021-36866

Authenticated (author or higher role) Stored Cross-Site Scripting (XSS) vulnerability in Fatcat Apps Easy Pricing Tables plugin <= 3.1.2 at WordPress.
Fatcatapps Easy Pricing Tables
5.4
CVSSv3

CVE-2024-8323

The Pricing Tables WordPress Plugin – Easy Pricing Tables plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘fontFamily’ attribute in all versions up to, and including, 3.2.6 due to insufficient input sanitization and output escaping. Thi...
Fatcatapps Easy Pricing Tables
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-39551hard-codedtype confusionmarkus drubbaCVE-2025-24054broken links removerCVE-2025-39567anthologizeCVE-2025-31201CVE-2025-29454file uploadCVE-2025-39558momen2009
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook