Nokautpl Nokaut_offers_box
2 CVEs affecting Nokautpl Nokaut_offers_box. Latest disclosed: 2025-05-15. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-10632 | Medium | 4.8 | 2025-05-15 | The Nokaut Offers Box WordPress plugin through 1.4.0 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to… |
CVE-2024-10634 | Medium | 4.3 | 2025-05-15 | The Nokaut Offers Box WordPress plugin through 1.4.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged… |