VYPR

Nelio Ab Testing

by WordPress

Source repositories

CVEs (7)

  • CVE-2026-32573CriMar 25, 2026
    risk 0.59cvss 9.1epss 0.00

    Improper Control of Generation of Code ('Code Injection') vulnerability in Nelio Software Nelio AB Testing nelio-ab-testing allows Code Injection.This issue affects Nelio AB Testing: from n/a through <= 8.2.7.

  • CVE-2025-67944CriJan 22, 2026
    risk 0.59cvss 9.1epss 0.00

    Improper Control of Generation of Code ('Code Injection') vulnerability in Nelio Software Nelio AB Testing nelio-ab-testing allows Code Injection.This issue affects Nelio AB Testing: from n/a through <= 8.1.8.

  • CVE-2026-25378HigFeb 19, 2026
    risk 0.49cvss 7.6epss 0.00

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nelio Software Nelio AB Testing nelio-ab-testing allows Blind SQL Injection.This issue affects Nelio AB Testing: from n/a through <= 8.2.4.

  • CVE-2016-10977Sep 17, 2019
    risk 0.00cvss epss 0.02

    The nelio-ab-testing plugin before 4.5.0 for WordPress has filename=..%2f directory traversal.

  • CVE-2016-10927Aug 22, 2019
    risk 0.00cvss epss 0.02

    The nelio-ab-testing plugin before 4.5.11 for WordPress has SSRF in ajax/iesupport.php.

  • CVE-2016-10926Aug 22, 2019
    risk 0.00cvss epss 0.02

    The nelio-ab-testing plugin before 4.5.9 for WordPress has SSRF in ajax/iesupport.php.

  • CVE-2017-18547Aug 16, 2019
    risk 0.00cvss epss 0.01

    The nelio-ab-testing plugin before 4.6.4 for WordPress has CSRF in experiment forms.