← Back

Pluginmirror

pluginmirror

2 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Social Stickers
social_stickers
1 CVE
Wp Quick Frontend Editor
wp_quick_frontend_editor
1 CVE

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-4371
1Pluginmirror
1Wp Quick Frontend Editor
Jun 17, 2026
Jun 7, 2023
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The WP Quick FrontEnd Editor plugin for WordPress is vulnerable to Setting Changs in versions up to, and including, 5.5. This is due to lacking both a security nonce and a capabilities check. This makes it possible for l...Show more
The WP Quick FrontEnd Editor plugin for WordPress is vulnerable to Setting Changs in versions up to, and including, 5.5. This is due to lacking both a security nonce and a capabilities check. This makes it possible for low-authenticated attackers to change plugin settings even when they do not have the capabilities to do so.Show less
CVE-2022-1418
1Pluginmirror
1Social Stickers
Jun 17, 2026
May 16, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Social Stickers WordPress plugin through 2.2.9 does not have CSRF checks in place when updating its Social Network settings, and does not escape some of these fields, which could allow attackers to make a logged-in a...Show more
The Social Stickers WordPress plugin through 2.2.9 does not have CSRF checks in place when updating its Social Network settings, and does not escape some of these fields, which could allow attackers to make a logged-in admin change them and lead to Stored Cross-Site Scripting issues.Show less