Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 62 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-0703 Sticky Buttons <= 3.2.2 - Authenticated (Admin+) Stored Cross-Site Scripting wpcalcSticky Buttons – Floating Buttons Builder Medium 4.4 2024-01-23 11:01:21 Deep Dive
CVE-2023-7048 My Sticky Bar <= 2.6.6 - Cross-Site Request Forgery to Sensitive Information Exposure premioMy Sticky Bar – Floating Notification Bar & Sticky Header (formerly myStickymenu) Low 3.1 2024-01-11 08:32:56 Deep Dive
CVE-2023-51361 WordPress Sticky Chat Widget Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS) Ginger PluginsSticky Chat Widget: Click to chat, SMS, Email, Messages, Call Button, Live Chat and Live Support Button Medium 5.9 2023-12-29 11:01:30 Deep Dive
CVE-2023-5509 myStickymenu < 2.6.5 - Subscriber+ Arbitrary Form Leads Deletion UnknownFloating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any Theme--2023-11-20 18:55:10 Deep Dive
CVE-2023-27418 WordPress Side Menu Lite Plugin <= 4.0 is vulnerable to Cross Site Request Forgery (CSRF) Wow-CompanySide Menu Lite – add sticky fixed buttons Medium 4.3 2023-11-12 22:53:01 Deep Dive
CVE-2023-5792 SourceCodester Sticky Notes App delete-note.php sql injection SourceCodesterSticky Notes App Medium 6.3 2023-10-26 16:31:06 Deep Dive
CVE-2023-5791 SourceCodester Sticky Notes App add-note.php cross site scripting SourceCodesterSticky Notes App Low 3.5 2023-10-26 16:31:05 Deep Dive
CVE-2023-41737 WordPress Swifty Bar, sticky bar by WPGens Plugin <= 1.2.10 is vulnerable to Cross Site Scripting (XSS) WPGensSwifty Bar, sticky bar by WPGens Medium 5.9 2023-10-02 08:04:01 Deep Dive
CVE-2023-3320 WordPress Plugin WP Sticky Social 跨站请求伪造漏洞 musildaWP Sticky Social Medium 6.1 2023-06-20 02:52:14 Deep Dive
CVE-2023-2362 Multiple Plugins from Wow-Company - Reflected XSS UnknownFloat menu 中危 -2023-06-12 17:28:23 Deep Dive
CVE-2023-25784 WordPress Sticky Ad Bar Plugin <= 1.3.1 is vulnerable to Cross Site Scripting (XSS) Bon Plan GratosSticky Ad Bar Plugin Medium 5.9 2023-05-03 10:20:00 Deep Dive
CVE-2022-35730 WordPress Oceanwp sticky header plugin <= 1.0.8 is vulnerable to Cross Site Request Forgery (CSRF) Oren HahiashviliOceanwp sticky header Medium 4.3 2022-12-04 22:35:22 Deep Dive
CVE-2022-2375 WP Sticky Button < 1.4.1 - Unauthenticated Arbitrary Settings Update to Stored XSS UnknownWP Sticky Button – Click to Chat 中危 -2022-08-22 15:01:53 Deep Dive
CVE-2022-1750 Sticky Popup <= 1.2 - Authenticated (Admin+) Stored Cross-Site Scripting numixtechSticky Popup Medium 5.5 2022-06-13 13:20:31 Deep Dive
CVE-2021-24867 Backdoored Plugins & Themes from AccessPress Themes AccessPress ThemesFrontend Post WordPress Plugin – AccessPress Anonymous Post 超危 -2022-02-21 10:45:39 Deep Dive
CVE-2022-0148 All-in-one Floating Contact Form < 2.0.4 - Authenticated Reflected Cross-Site Scripting (XSS) UnknownAll-in-one Floating Contact Form, Call, Chat, and 50+ Social Icon Tabs – My Sticky Elements 中危 -2022-02-07 15:47:25 Deep Dive
CVE-2021-24992 Buttonizer - Smart Floating Action Button < 2.5.5 - Admin+ Stored Cross-Site Scripting UnknownSmart Floating / Sticky Buttons – Call, Sharing, Chat Widgets & More – Buttonizer 中危 -2021-12-27 10:33:25 Deep Dive
CVE-2021-24752 Multiple Plugins from CatchThemes - Unauthorised Plugin's Setting Change CatchThemesEssential Widgets 中危 -2021-10-18 13:46:10 Deep Dive
CVE-2021-24580 Side Menu Lite < 2.2.6 - Authenticated SQL Injection UnknownSide Menu Lite - add sticky fixed buttons 高危 -2021-08-30 14:11:22 Deep Dive
CVE-2021-24521 Side Menu Lite < 2.2.1 - Authenticated SQL Injection UnknownSide Menu Lite – add sticky fixed buttons 高危 -2021-08-09 10:04:14 Deep Dive