Hiroaki-miyashita Custom Field Template
5 CVEs affecting Hiroaki-miyashita Custom Field Template. Latest disclosed: 2024-06-11. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-0627 | Medium | 6.4 | 2024-06-11 | The Custom Field Template plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's custom field name column in all versions up to, an… |
CVE-2023-6745 | Medium | 6.4 | 2024-06-11 | The Custom Field Template plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'cpt' shortcode in all versions up to, and includi… |
CVE-2024-0653 | Medium | 4.4 | 2024-06-11 | The Custom Field Template plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.6.1 due… |
CVE-2023-6748 | Medium | 4.3 | 2024-06-11 | The Custom Field Template plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.1 via the 'cft' shortc… |
CVE-2020-36742 | Medium | 4.3 | 2023-07-01 | The Custom Field Template plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.5.1. This is due to missing or i… |