Fifu Featured_image_from_url
4 CVEs affecting Fifu Featured_image_from_url. Latest disclosed: 2024-02-29. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-1496 | Medium | 6.4 | 2024-02-29 | The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the fifu_input_url parameter in all versions up to, an… |
CVE-2023-6561 | Medium | 6.4 | 2024-01-11 | The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the featured image alt text in all versions up to, and… |
CVE-2022-2241 | Medium | 6.1 | 2022-08-01 | The Featured Image from URL (FIFU) WordPress plugin before 4.0.1 does not have CSRF check in place when updating its settings, which could allow attackers to m… |
CVE-2022-2278 | Medium | 4.8 | 2022-08-01 | The Featured Image from URL (FIFU) WordPress plugin before 4.0.1 does not validate, sanitise and escape some of its settings, which could allow high privilege… |