← Back

Mediaron

mediaron

2 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Metronet Tag Manager
metronet_tag_manager
1 CVE
Custom Query Blocks
custom_query_blocks
1 CVE

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-44059
1Mediaron
1Custom Query Blocks
Jun 17, 2026
Sep 15, 2024
N/A· v4
5.4 MEDIUM· v3
N/A· v2
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ronald Huereca Custom Query Blocks post-type-archive-mapping allows DOM-Based XSS.This issue affects Custom Query Bloc...Show more
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ronald Huereca Custom Query Blocks post-type-archive-mapping allows DOM-Based XSS.This issue affects Custom Query Blocks: from n/a through <= 5.3.1.Show less
CVE-2018-1000506
1Mediaron
1Metronet Tag Manager
Nov 21, 2024
Jun 26, 2018
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Metronet Tag Manager version 1.2.7 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can result in allows anybody to do almost anythin...Show more
Metronet Tag Manager version 1.2.7 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can result in allows anybody to do almost anything an admin can. This attack appear to be exploitable via Logged in user must follow a link. This vulnerability appears to have been fixed in 1.2.9.Show less