Smartlogix Wp-insert
2 CVEs affecting Smartlogix Wp-insert. Latest disclosed: 2023-04-25. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-17573 | Critical | 9.8 | 2018-09-28 | The Wp-Insert plugin through 2.4.2 for WordPress allows upload of arbitrary PHP code because of the exposure and configuration of FCKeditor under fckeditor/edi… |
CVE-2023-25461 | Medium | 5.9 | 2023-04-25 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in namithjawahar Wp-Insert plugin <= 2.5.0 versions. |