VYPR

WP-Table Reloaded

by WordPress

CVEs (2)

  • CVE-2022-4491MedJan 9, 2023
    risk 0.35cvss 5.4epss 0.00

    The WP-Table Reloaded WordPress plugin through 1.9.4 does not validate and escapes some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as a contributor to perform Stored Cross-Site Scripting attacks, which could be…

  • CVE-2013-1463Feb 7, 2013
    risk 0.04cvss epss 0.06

    Cross-site scripting (XSS) vulnerability in js/tabletools/zeroclipboard.swf in the WP-Table Reloaded module before 1.9.4 for Wordpress allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: this might be the same vulnerability as…