← Back

Check & Log Email

check_&_log_email

Vendor: Wpchill • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-1547
1Wpchill
1Check & Log Email
Nov 21, 2024
May 23, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Check & Log Email WordPress plugin before 1.0.6 does not sanitise and escape a parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting
CVE-2021-24908
1Wpchill
1Check & Log Email
Nov 21, 2024
Nov 29, 2021
N/A· v4
6.1 MEDIUM· v3
2.6 LOW· v2
The Check & Log Email WordPress plugin before 1.0.4 does not escape the d parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting
CVE-2021-24774
1Wpchill
1Check & Log Email
Nov 21, 2024
Oct 25, 2021
N/A· v4
7.2 HIGH· v3
6.5 MEDIUM· v2
The Check & Log Email WordPress plugin before 1.0.3 does not validate and escape the "order" and "orderby" GET parameters before using them in a SQL statement when viewing logs, leading to SQL injections issues