usabilitydynamics wp-invoice CVE 漏洞(7)

CVE 数: 7 CPE versions: View versions table

摘要

本页列出影响 usabilitydynamics wp-invoice 的已公开 CVE 漏洞(通过 NVD CPE 关联)。每行包含严重程度评分、摘要与发布日期,便于识别与分析安全问题。

显示 177 CVE 数
«« 第一页 « 上一页 第 1 / 1 页 下一页 »
CVE 摘要 来源 最高 CVSS EPSS % 公开时间 更新时间
CVE-2022-1617 The WP-Invoice WordPress plugin through 4.3.1 does not have CSRF check in place when updating its settings, and is lacking sanitisation as well as escaping in some of them, allowing attacker to make a logged in admin change them and add XSS payload in them [email protected] 6.1 0.27% 2024-01-16 2026-06-17
CVE-2016-11011 The wp-invoice plugin before 4.1.1 for WordPress has wpi_update_user_option privilege escalation. [email protected] 6.5 1.37% 2019-09-20 2026-06-16
CVE-2016-11010 The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_twocheckout payer metadata updates. [email protected] 5.3 1.77% 2019-09-20 2026-06-16
CVE-2016-11009 The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_interkassa payer metadata updates. [email protected] 5.3 1.77% 2019-09-20 2026-06-16
CVE-2016-11008 The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_paypal payer metadata updates. [email protected] 5.3 1.77% 2019-09-20 2026-06-16
CVE-2016-11007 The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_user_id for invoice retrieval. [email protected] 5.3 1.97% 2019-09-20 2026-06-16
CVE-2016-11006 The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control for admin_init settings changes. [email protected] 5.3 1.77% 2019-09-20 2026-06-16
«« 第一页 « 上一页 第 1 / 1 页 下一页 »
cvelogic Threat Intelligence