Fifu Featured_image_from_url

4 CVEs affecting Fifu Featured_image_from_url. Latest disclosed: 2024-02-29. Critical: 0, High: 0.

Top CVEs affecting Fifu Featured_image_from_url
CVESeverityScorePublishedSummary
CVE-2024-1496Medium6.42024-02-29The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the fifu_input_url parameter in all versions up to, an…
CVE-2023-6561Medium6.42024-01-11The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the featured image alt text in all versions up to, and…
CVE-2022-2241Medium6.12022-08-01The Featured Image from URL (FIFU) WordPress plugin before 4.0.1 does not have CSRF check in place when updating its settings, which could allow attackers to m…
CVE-2022-2278Medium4.82022-08-01The Featured Image from URL (FIFU) WordPress plugin before 4.0.1 does not validate, sanitise and escape some of its settings, which could allow high privilege…