RSS   Vulnerabilities for
'All in one wp security & firewall'
   RSS

2019-08-14
 
CVE-2016-10888

CWE-89
 

 
The all-in-one-wp-security-and-firewall plugin before 4.0.7 for WordPress has multiple SQL injection issues.

 
 
CVE-2016-10887

CWE-89
 

 
The all-in-one-wp-security-and-firewall plugin before 4.0.9 for WordPress has multiple SQL injection issues.

 
 
CVE-2015-9310

CWE-89
 

 
The all-in-one-wp-security-and-firewall plugin before 3.9.1 for WordPress has multiple SQL injection issues.

 
2019-08-13
 
CVE-2016-10867

CWE-79
 

 
The all-in-one-wp-security-and-firewall plugin before 4.0.6 for WordPress has XSS in settings pages.

 
 
CVE-2016-10866

CWE-79
 

 
The all-in-one-wp-security-and-firewall plugin before 4.2.0 for WordPress has multiple XSS issues.

 
 
CVE-2016-10868

CWE-79
 

 
The all-in-one-wp-security-and-firewall plugin before 4.0.5 for WordPress has XSS in the blacklist, file system, and file change detection settings pages.

 
 
CVE-2015-9294

CWE-79
 

 
The all-in-one-wp-security-and-firewall plugin before 3.9.5 for WordPress has XSS in add_query_arg and remove_query_arg function instances.

 
 
CVE-2015-9293

CWE-79
 

 
The all-in-one-wp-security-and-firewall plugin before 3.9.8 for WordPress has XSS in the unlock request feature.

 

 >>> Vendor: Tipsandtricks-hq 12 Products
Wordpress simple paypal shopping cart
Simple download monitor
All in one wp security & firewall
Category specific rss feed subscription
Wp security \& firewall
Software license manager
Wp video lightbox
Compact wp audio player
Far future expiry header
All in one wp security \& firewall
Wp simple adsense insertion
Accept stripe


Copyright 2024, cxsecurity.com

 

Back to Top