Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Seraphinitesolutions Subscribe
Filtered by product Seraphinite Accelerator
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-49740 1 Seraphinitesolutions 1 Seraphinite Accelerator 2023-12-18 N/A 6.1 MEDIUM
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Seraphinite Solutions Seraphinite Accelerator allows Reflected XSS.This issue affects Seraphinite Accelerator: from n/a through 2.20.28.
CVE-2023-5611 1 Seraphinitesolutions 1 Seraphinite Accelerator 2023-12-02 N/A 5.3 MEDIUM
The Seraphinite Accelerator WordPress plugin before 2.20.32 does not have authorisation and CSRF checks when resetting and importing its settings, allowing unauthenticated users to reset them