CSRF in MapSVG Lite could allow an attacker to do almost anything an admin can
Severity: Medium
Advisories
ACE via file inclusion in Redirection allows admins to execute any PHP file in the filesystem
Severity: High
CSRF in Tooltipy (tooltips for WP) could allow anybody to duplicate posts
Severity: Medium
Reflected XSS in Tooltipy (tooltips for WP) could allow anybody to do almost anything an admin can
Severity: Medium
Unserialization vulnerability in Redirection could allow admin to execute arbitrary code in some circumstances
Severity: High
CSRF in Metronet Tag Manager allows anybody to do almost anything an admin can
Severity: Medium
WP ULike allows anybody to delete any row in certain tables
Severity: Medium
Stored XSS in WP ULike allows unauthorised users to do almost anything an admin can
Severity: Medium
CSRF in WP User Groups allows anybody to modify user groups and types
Severity: Medium
WP Image Zoom allows anybody to cause denial of service
Severity: High