Easy Table Of Contents

easy_table_of_contents

Vendor: Magazine3 • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-7082 1Magazine3 1Easy Table Of Contents May 28, 2025 Aug 6, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 The Easy Table of Contents WordPress plugin before 2.0.68 does not sanitise and escape some parameters, which could allow users with a role as low as Editor to perform Cross-Site Scripting attacks.
CVE-2024-6334 1Magazine3 1Easy Table Of Contents May 21, 2025 Jul 9, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 The Easy Table of Contents WordPress plugin before 2.0.67.1 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfi...Show more The Easy Table of Contents WordPress plugin before 2.0.67.1 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed.Show less
CVE-2024-5573 1Magazine3 1Easy Table Of Contents May 19, 2025 Jun 26, 2024 N/A· v4 5.9 MEDIUM· v3 N/A· v2 The Easy Table of Contents WordPress plugin before 2.0.66 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfilt...Show more The Easy Table of Contents WordPress plugin before 2.0.66 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Cross-Site Scripting attacks even when unfiltered_html is disallowedShow less