freelancer-coder CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

freelancer-coder vulnerability overview

Aggregates CVE and security vulnerability intelligence across all freelancer-coder-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk cross-site scripting and vendor risk sql injection and related problems; some flaws may lead to vendor impact session compromise and vendor impact data exposure.

Vulnerability distribution trend (last 24 months)

Showing 13 of 3 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2024-7385 The WordPress Simple HTML Sitemap plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 3.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. [email protected] 9.1 1.35% 2024-09-25 2024-10-02
CVE-2023-46627 Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin <= 2.1 versions. [email protected] 7.1 0.41% 2023-11-08 2026-04-28
CVE-2023-45067 Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin <= 2.1 versions. [email protected] 6.5 0.31% 2023-10-18 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence