Vulnerabilities (CVE)

Filtered by vendor Thecartpress Subscribe
Filtered by product Thecartpress
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-5207 2 Thecartpress, Wordpress 2 Thecartpress, Wordpress 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in admin/OptionsPostsList.php in the TheCartPress plugin for WordPress before 1.1.6 before 2011-12-31 allows remote attackers to inject arbitrary web script or HTML via the tcp_name_post_XXXXX parameter.