Smartlogix Wp-insert

2 CVEs affecting Smartlogix Wp-insert. Latest disclosed: 2023-04-25. Critical: 1, High: 0.

Top CVEs affecting Smartlogix Wp-insert
CVESeverityScorePublishedSummary
CVE-2018-17573Critical9.82018-09-28The Wp-Insert plugin through 2.4.2 for WordPress allows upload of arbitrary PHP code because of the exposure and configuration of FCKeditor under fckeditor/edi…
CVE-2023-25461Medium5.92023-04-25Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in namithjawahar Wp-Insert plugin <= 2.5.0 versions.