Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Soflyy Subscribe
Total 27 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-9329 1 Soflyy 1 Wp All Import 2019-08-22 4.3 MEDIUM 6.1 MEDIUM
The wp-all-import plugin before 3.2.5 for WordPress has reflected XSS.
CVE-2017-18567 1 Soflyy 1 Wp All Import 2019-08-22 4.3 MEDIUM 6.1 MEDIUM
The wp-all-import plugin before 3.4.6 for WordPress has XSS.
CVE-2015-9331 1 Soflyy 1 Wp All Import 2019-08-22 5.0 MEDIUM 7.5 HIGH
The wp-all-import plugin before 3.2.4 for WordPress has no prevention of unauthenticated requests to adminInit.
CVE-2015-9330 1 Soflyy 1 Wp All Import 2019-08-22 7.5 HIGH 9.8 CRITICAL
The wp-all-import plugin before 3.2.5 for WordPress has blind SQL injection.
CVE-2018-20978 1 Soflyy 1 Wp All Import 2019-08-21 4.3 MEDIUM 6.1 MEDIUM
The wp-all-import plugin before 3.4.7 for WordPress has XSS.
CVE-2018-0547 1 Soflyy 1 Wp All Import 2018-03-28 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in WP All Import plugin prior to version 3.4.7 for WordPress allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0546 1 Soflyy 1 Wp All Import 2018-03-28 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in WP All Import plugin prior to version 3.4.6 for WordPress allows an attacker to inject arbitrary web script or HTML via unspecified vectors.