Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Usabilitydynamics Subscribe

Filtered by product Wp-invoice

Total 6 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2016-11011	1 Usabilitydynamics	1 Wp-invoice	2019-09-20	4.0 MEDIUM	6.5 MEDIUM
The wp-invoice plugin before 4.1.1 for WordPress has wpi_update_user_option privilege escalation.
CVE-2016-11009	1 Usabilitydynamics	1 Wp-invoice	2019-09-20	5.0 MEDIUM	5.3 MEDIUM
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_interkassa payer metadata updates.
CVE-2016-11010	1 Usabilitydynamics	1 Wp-invoice	2019-09-20	5.0 MEDIUM	5.3 MEDIUM
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_twocheckout payer metadata updates.
CVE-2016-11007	1 Usabilitydynamics	1 Wp-invoice	2019-09-20	5.0 MEDIUM	5.3 MEDIUM
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_user_id for invoice retrieval.
CVE-2016-11008	1 Usabilitydynamics	1 Wp-invoice	2019-09-20	5.0 MEDIUM	5.3 MEDIUM
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_paypal payer metadata updates.
CVE-2016-11006	1 Usabilitydynamics	1 Wp-invoice	2019-09-20	5.0 MEDIUM	5.3 MEDIUM
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control for admin_init settings changes.