Search Results | AttackerKB

13 Total Results

Displaying 11-13 of 13

Attacker Value

Unknown

CVE-2022-41781

Disclosure Date: November 01, 2022 (last updated December 22, 2024)

Broken Access Control vulnerability in Permalink Manager Lite plugin <= 2.2.20 on WordPress.

Attacker Value

Unknown

CVE-2022-0201

Disclosure Date: February 14, 2022 (last updated February 23, 2025)

The Permalink Manager Lite WordPress plugin before 2.2.15 and Permalink Manager Pro WordPress plugin before 2.2.15 do not sanitise and escape query parameters before outputting them back in the debug page, leading to a Reflected Cross-Site Scripting issue

Attack Vector: Network Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2021-24769

Disclosure Date: October 25, 2021 (last updated February 23, 2025)

The Permalink Manager Lite WordPress plugin before 2.2.13.1 does not validate and escape the orderby parameter before using it in a SQL statement in the Permalink Manager page, leading to a SQL Injection

Attack Vector: Network Privileges: High User Interaction: None

13 Total Results

Displaying 11-13 of 13

Unknown

CVE-2022-41781

Unknown

CVE-2022-0201

Unknown

CVE-2021-24769

Quick Cookie Notification