Vulnerabilities (CVE)

Filtered by vendor Pojo Subscribe
Filtered by product Activity Log
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-10890 1 Pojo 1 Activity Log 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
The aryo-activity-log plugin before 2.3.2 for WordPress has XSS.
CVE-2016-10891 1 Pojo 1 Activity Log 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
The aryo-activity-log plugin before 2.3.3 for WordPress has XSS.
CVE-2018-8729 1 Pojo 1 Activity Log 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in the Activity Log plugin before 2.4.1 for WordPress allow remote attackers to inject arbitrary JavaScript or HTML via a title that is not escaped.