Satollo

satollo

2 CVEs • 2 products

Products (2)

Click to collapse

Toggle

Giveaway

giveaway

1 CVE

Head, Footer, And Post Injections

head,_footer,_and_post_injections

1 CVE

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-13900 1Satollo 1Head, Footer, And Post Injections Jun 17, 2026 Feb 21, 2025 N/A· v4 7.2 HIGH· v3 N/A· v2 The Head, Footer and Post Injections plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 3.3.0. This makes it possible for authenticated attackers, with Administrator-level acce...Show more The Head, Footer and Post Injections plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 3.3.0. This makes it possible for authenticated attackers, with Administrator-level access and above, to inject PHP Code in multisite environments.Show less
CVE-2021-24497 1Satollo 1Giveaway Jun 17, 2026 Aug 23, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 The Giveaway WordPress plugin through 1.2.2 is vulnerable to an SQL Injection issue which allows an administrative user to execute arbitrary SQL commands via the $post_id on the options.php page.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-13900

1Satollo

1Head, Footer, And Post Injections

Jun 17, 2026

Feb 21, 2025

N/A· v4

7.2 HIGH· v3

N/A· v2

The Head, Footer and Post Injections plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 3.3.0. This makes it possible for authenticated attackers, with Administrator-level acce...Show more

CVE-2021-24497

1Satollo

1Giveaway

Jun 17, 2026

Aug 23, 2021

N/A· v4

7.2 HIGH· v3

6.5 MEDIUM· v2

The Giveaway WordPress plugin through 1.2.2 is vulnerable to an SQL Injection issue which allows an administrative user to execute arbitrary SQL commands via the $post_id on the options.php page.