Igniteup

igniteup

Vendor: Getigniteup • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-0898 1Getigniteup 1Igniteup Jun 17, 2026 May 9, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 The IgniteUp WordPress plugin through 3.4.1 does not sanitise and escape some fields when high privilege users don't have the unfiltered_html capability, which could lead to Stored Cross-Site Scripting issues
CVE-2019-17237 1Getigniteup 1Igniteup Jun 17, 2026 Nov 12, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows CSRF.
CVE-2019-17236 1Getigniteup 1Igniteup Jun 17, 2026 Nov 12, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress is vulnerable to stored XSS.
CVE-2019-17235 1Getigniteup 1Igniteup Jun 17, 2026 Nov 12, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows information disclosure.
CVE-2019-17234 1Getigniteup 1Igniteup Jun 17, 2026 Nov 12, 2019 N/A· v4 7.5 HIGH· v3 6.4 MEDIUM· v2 includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows unauthenticated arbitrary file deletion.