← Back

Tommietott

tommietott

2 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Likebot
likebot
1 CVE
Sensly Online Presence
sensly_online_presence
1 CVE

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-13493
1Tommietott
1Sensly Online Presence
May 14, 2025
Feb 14, 2025
N/A· v4
4.8 MEDIUM· v3
N/A· v2
The Sensly Online Presence WordPress plugin through 0.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the...Show more
The Sensly Online Presence WordPress plugin through 0.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).Show less
CVE-2025-0522
1Tommietott
1Likebot
May 23, 2025
Feb 6, 2025
N/A· v4
4.7 MEDIUM· v3
N/A· v2
The LikeBot WordPress plugin through 0.85 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF...Show more
The LikeBot WordPress plugin through 0.85 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.Show less