Webcodingplace Ultimate_classified_listings

5 CVEs affecting Webcodingplace Ultimate_classified_listings. Latest disclosed: 2025-02-20. Critical: 0, High: 3.

Top CVEs affecting Webcodingplace Ultimate_classified_listings
CVESeverityScorePublishedSummary
CVE-2024-13753High8.12025-02-20The Ultimate Classified Listings plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5. This is due to mis…
CVE-2024-5882High7.52024-07-29The Ultimate Classified Listings WordPress plugin before 1.3 does not validate the `ucl_page` and `layout` parameters allowing unauthenticated users to access…
CVE-2024-6529High7.12024-08-01The Ultimate Classified Listings WordPress plugin before 1.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Refle…
CVE-2024-5883Medium4.72024-07-29The Ultimate Classified Listings WordPress plugin before 1.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Refle…
CVE-2024-13748Medium4.42025-02-20The Ultimate Classified Listings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title parameter in all versions up to, and including…