VYPR

Peering Manager

by Peering Manager

CVEs (5)

  • CVE-2025-12710MedNov 19, 2025
    risk 0.42cvss 6.4epss 0.00

    The Pet-Manager – Petfinder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the kwm-petfinder shortcode in all versions up to, and including, 3.6.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it…

  • CVE-2024-28112MedMar 12, 2024
    risk 0.40cvss 6.1epss 0.00

    Peering Manager is a BGP session management tool. Affected versions of Peering Manager are subject to a potential stored Cross-Site Scripting (XSS) attack in the `name` attribute of AS or Platform. The XSS triggers on a routers detail page. Adversaries are able to execute…

  • CVE-2024-3918MedMay 23, 2024
    risk 0.31cvss 4.8epss 0.00

    The Pet Manager WordPress plugin through 1.4 does not sanitise and escape some of its Pet settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting attacks.

  • CVE-2024-28114HigMar 12, 2024
    risk 0.00cvss 8.1epss 0.01

    Peering Manager is a BGP session management tool. There is a Server Side Template Injection vulnerability that leads to Remote Code Execution in Peering Manager <=1.8.2. As a result arbitrary commands can be executed on the operating system that is running Peering Manager. This…

  • CVE-2024-28113LowMar 12, 2024
    risk 0.00cvss 3.5epss 0.00

    Peering Manager is a BGP session management tool. In Peering Manager <=1.8.2, it is possible to redirect users to an arbitrary page using a crafted url. As a result users can be redirected to an unexpected location. This issue has been addressed in version 1.8.3. Users are…