Neliosoftware Nelio_ab_testing
4 CVEs affecting Neliosoftware Nelio_ab_testing. Latest disclosed: 2019-09-17. Critical: 2, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-10927 | Critical | 10.0 | 2019-08-22 | The nelio-ab-testing plugin before 4.5.11 for WordPress has SSRF in ajax/iesupport.php. |
CVE-2016-10926 | Critical | 10.0 | 2019-08-22 | The nelio-ab-testing plugin before 4.5.9 for WordPress has SSRF in ajax/iesupport.php. |
CVE-2017-18547 | High | 8.8 | 2019-08-16 | The nelio-ab-testing plugin before 4.6.4 for WordPress has CSRF in experiment forms. |
CVE-2016-10977 | Medium | 6.5 | 2019-09-17 | The nelio-ab-testing plugin before 4.5.0 for WordPress has filename=..%2f directory traversal. |