Webinarignition

CVEs (8)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2026-42758	WordPress Webinarignition	Cri	0.64	9.8	—	May 27, 2026	Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through < 4.08.253.
CVE-2026-42757	WordPress Webinarignition	Cri	0.64	9.9	—	May 27, 2026	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Path Traversal.This issue affects WebinarIgnition: from n/a through < 4.08.253.
CVE-2023-51424	Saleswonder Webinarignition	Cri	0.64	9.8	0.00	May 17, 2024	Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through 3.05.0.
CVE-2023-51422	Saleswonder Webinarignition	Cri	0.64	9.9	0.01	Dec 29, 2023	Deserialization of Untrusted Data vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings \| WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom…
CVE-2023-51423	Saleswonder Webinarignition	Cri	0.60	9.3	0.00	Dec 31, 2023	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings \| WebinarIgnition.This issue affects Webinar Plugin: Create…
CVE-2025-6441	Saleswonder Webinarignition	Cri	0.57	9.8	0.01	Jul 24, 2025	The Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings \| WebinarIgnition plugin for WordPress is vulnerable to unauthenticated login token generation due to a missing capability check on the `webinarignition_sign_in_support_staff` and…
CVE-2024-32445	Saleswonder Webinarignition	Med	0.35	5.4	0.00	Apr 15, 2024	Cross-Site Request Forgery (CSRF) vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition.This issue affects WebinarIgnition: from n/a through <= 3.05.8.
CVE-2023-25023	WordPress Webinarignition		0.00	—	0.00	Apr 7, 2023	Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Saleswonder.Biz Webinar ignition plugin <= 2.14.2 versions.

CVE-2026-42758CriMay 27, 2026
WordPress
Webinarignition
risk 0.64cvss 9.8epss —
Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through < 4.08.253.
CVE-2026-42757CriMay 27, 2026
WordPress
Webinarignition
risk 0.64cvss 9.9epss —
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Path Traversal.This issue affects WebinarIgnition: from n/a through < 4.08.253.
CVE-2023-51424CriMay 17, 2024
Saleswonder
Webinarignition
risk 0.64cvss 9.8epss 0.00
Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege Escalation.This issue affects WebinarIgnition: from n/a through 3.05.0.
CVE-2023-51422CriDec 29, 2023
Saleswonder
Webinarignition
risk 0.64cvss 9.9epss 0.01
Deserialization of Untrusted Data vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom…
CVE-2023-51423CriDec 31, 2023
Saleswonder
Webinarignition
risk 0.60cvss 9.3epss 0.00
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create…
CVE-2025-6441CriJul 24, 2025
Saleswonder
Webinarignition
risk 0.57cvss 9.8epss 0.01
The Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition plugin for WordPress is vulnerable to unauthenticated login token generation due to a missing capability check on the `webinarignition_sign_in_support_staff` and…
CVE-2024-32445MedApr 15, 2024
Saleswonder
Webinarignition
risk 0.35cvss 5.4epss 0.00
Cross-Site Request Forgery (CSRF) vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition.This issue affects WebinarIgnition: from n/a through <= 3.05.8.
CVE-2023-25023Apr 7, 2023
WordPress
Webinarignition
risk 0.00cvss —epss 0.00
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Saleswonder.Biz Webinar ignition plugin <= 2.14.2 versions.