Xavivars Xv_random_quotes

2 CVEs affecting Xavivars Xv_random_quotes. Latest disclosed: 2025-03-11. Critical: 0, High: 1.

Top CVEs affecting Xavivars Xv_random_quotes
CVESeverityScorePublishedSummary
CVE-2024-13574High7.12025-03-11The XV Random Quotes WordPress plugin through 1.40 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross…
CVE-2024-13580Medium4.32025-03-11The XV Random Quotes WordPress plugin through 1.40 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged i…