| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-48371 | ITPison OMICARD EDM 's SMS - Arbitrary File Upload | ITPison | OMICARD EDM 's SMS | Critical | 9.8 | 2023-12-15 04:11:25 | Deep Dive |
| CVE-2022-4943 | miniOrange's Google Authenticator <= 5.6.5 - Missing Authorization to Plugin Settings Change | cyberlord92 | miniOrange 2FA – Two-Factor Authentication for WordPress (SMS, Email & Google Authenticator) | High | 7.5 | 2023-10-20 07:29:21 | Deep Dive |
| CVE-2023-32742 | WordPress WP SMS Plugin <= 6.1.4 is vulnerable to Cross Site Scripting (XSS) | VeronaLabs | WP SMS | High | 7.1 | 2023-08-30 11:08:09 | Deep Dive |
| CVE-2023-27416 | WordPress Decon WP SMS Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS) | Decon Digital | Decon WP SMS | Medium | 5.9 | 2023-08-08 10:25:38 | Deep Dive |
| CVE-2023-3245 | Floating Chat Widget < 3.1.2 - Admin+ Stored Cross-Site Scripting | Unknown | Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button | 中危 | - | 2023-07-17 13:29:56 | Deep Dive |
| CVE-2022-3858 | Chaty < 3.0.3 - Admin+ SQLi | Unknown | Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line, WeChat, Email, SMS, Call Button | 高危 | - | 2022-12-05 16:50:40 | Deep Dive |
| CVE-2022-3415 | Chat Bubble < 2.3 - Unauthenticated Stored Cross-Site Scripting | Unknown | Chat Bubble – Floating Chat with Contact Chat Icons, Messages, Telegram, Email, SMS, Call me back | 中危 | - | 2022-11-14 00:00:00 | Deep Dive |
| CVE-2022-2429 | Ultimate SMS Notifications for WooCommerce <= 1.4.1 - CSV Injection | homescript | Ultimate SMS Notifications for WooCommerce | Medium | 6.5 | 2022-09-06 17:18:56 | Deep Dive |
| CVE-2022-1994 | Google Authenticator < 1.0.8 - Admin+ Stored Cross-Site Scripting | Unknown | Login With OTP Over SMS, Email, WhatsApp and Google Authenticator | 中危 | - | 2022-06-27 08:59:16 | Deep Dive |
| CVE-2022-1321 | miniOrange's Google Authenticator < 5.5.6 - Admin+ Stored Cross-Site Scripting | Unknown | miniOrange's Google Authenticator – WordPress Two Factor Authentication (2FA , Two Factor, OTP SMS and Email) | Passwordless login | 中危 | - | 2022-06-27 08:56:28 | Deep Dive |
| CVE-2021-25016 | Chaty < 2.8.3 - Reflected Cross-Site Scripting | Unknown | Floating Chat Widget: Contact Icons, Messages, Telegram, Email, SMS, Call Button – Chaty | 中危 | - | 2022-01-03 12:49:12 | Deep Dive |
| CVE-2021-38357 | SMS OVH <= 0.1 Reflected Cross-Site Scripting | SMS OVH | SMS OVH | Medium | 6.1 | 2021-09-10 13:34:59 | Deep Dive |
| CVE-2021-24588 | SMS Alert Order Notifications – WooCommerce < 3.4.7 Authenticated Cross Site Scripting | Unknown | SMS Alert Order Notifications – WooCommerce | 中危 | - | 2021-09-06 11:09:28 | Deep Dive |
| CVE-2021-24561 | WP SMS < 5.4.13 - Authenticated Stored Cross-Site Scripting | Unknown | WP SMS | 中危 | - | 2021-08-23 11:10:13 | Deep Dive |
| CVE-2020-2297 | CloudBees Jenkins 安全漏洞 | Jenkins project | Jenkins SMS Notification Plugin | 低危 | - | 2020-10-08 12:40:29 | Deep Dive |