Wow-company Sticky_buttons
3 CVEs affecting Wow-company Sticky_buttons. Latest disclosed: 2024-05-02. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-3475 | High | 7.5 | 2024-05-02 | The Sticky Buttons WordPress plugin before 3.2.4 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform… |
CVE-2023-2362 | Medium | 6.1 | 2023-06-12 | The Float menu WordPress plugin before 5.0.2, Bubble Menu WordPress plugin before 3.0.4, Button Generator WordPress plugin before 2.3.5, Calculator Builder Wor… |
CVE-2024-0703 | Medium | 4.4 | 2024-01-23 | The Sticky Buttons – floating buttons builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via sticky URLs in all versions up to, and incl… |