CVEs (2)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Securimage Wp Fixed Project 1Securimage Wp Fixed Jun 17, 2026 Jul 11, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Cross-Site Request Forgery (CSRF) vulnerability in Drew Phillips Securimage-WP plugin <= 3.6.16 versions. |
1Securimage Wp Fixed Project 1Securimage Wp Fixed Jun 17, 2026 Aug 11, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The Securimage-WP-Fixed WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to the use of $_SERVER['PHP_SELF'] in the ~/securimage-wp.php file which allows attackers to inject arbitrary web scripts, in v...Show more |