← Back

Wp Fusion

wp_fusion

Vendor: Verygoodplugins • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-34661
1Verygoodplugins
1Wp Fusion
Jun 17, 2026
Aug 9, 2021
N/A· v4
4.7 MEDIUM· v3
4.3 MEDIUM· v2
The WP Fusion Lite WordPress plugin is vulnerable to Cross-Site Request Forgery via the `show_logs_section` function found in the ~/includes/admin/logging/class-log-handler.php file which allows attackers to drop all log...Show more
The WP Fusion Lite WordPress plugin is vulnerable to Cross-Site Request Forgery via the `show_logs_section` function found in the ~/includes/admin/logging/class-log-handler.php file which allows attackers to drop all logs for the plugin, in versions up to and including 3.37.18.Show less
CVE-2021-34660
1Verygoodplugins
1Wp Fusion
Jun 17, 2026
Aug 9, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The WP Fusion Lite WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the startdate parameter found in the ~/includes/admin/logging/class-log-table-list.php file which allows attackers to inject arbitra...Show more
The WP Fusion Lite WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the startdate parameter found in the ~/includes/admin/logging/class-log-table-list.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.37.18.Show less