Unalignedcode

unalignedcode

2 CVEs • 2 products

Products (2)

Click to collapse

Toggle

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-13570 1Unalignedcode 1Stray Random Quotes Jun 17, 2026 Feb 11, 2025 N/A· v4 6.1 MEDIUM· v3 N/A· v2 The Stray Random Quotes WordPress plugin through 1.9.9 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privileg...Show more The Stray Random Quotes WordPress plugin through 1.9.9 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.Show less
CVE-2023-6946 1Unalignedcode 1Autotitle Jun 17, 2026 Jan 29, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 The Autotitle for WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-13570

1Unalignedcode

1Stray Random Quotes

Jun 17, 2026

Feb 11, 2025

N/A· v4

6.1 MEDIUM· v3

N/A· v2

The Stray Random Quotes WordPress plugin through 1.9.9 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privileg...Show more

CVE-2023-6946

1Unalignedcode

1Autotitle

Jun 17, 2026

Jan 29, 2024

N/A· v4

8.8 HIGH· v3

N/A· v2

The Autotitle for WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.