Quotes And Tips
by WordPress
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-3112 | 0.00 | — | 0.00 | Jul 12, 2024 | The Quotes and Tips by BestWebSoft WordPress plugin before 1.45 does not properly validate image files uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to (for example in multisite setup) | |||
| CVE-2015-9385 | 0.00 | — | 0.01 | Sep 20, 2019 | The quotes-and-tips plugin before 1.20 for WordPress has XSS. |
- CVE-2024-3112Jul 12, 2024risk 0.00cvss —epss 0.00
The Quotes and Tips by BestWebSoft WordPress plugin before 1.45 does not properly validate image files uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to (for example in multisite setup)
- CVE-2015-9385Sep 20, 2019risk 0.00cvss —epss 0.01
The quotes-and-tips plugin before 1.20 for WordPress has XSS.