Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Getigniteup Subscribe
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-0898 1 Getigniteup 1 Igniteup 2022-05-16 3.5 LOW 5.4 MEDIUM
The IgniteUp WordPress plugin through 3.4.1 does not sanitise and escape some fields when high privilege users don't have the unfiltered_html capability, which could lead to Stored Cross-Site Scripting issues
CVE-2019-17234 1 Getigniteup 1 Igniteup 2021-07-21 6.4 MEDIUM 7.5 HIGH
includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows unauthenticated arbitrary file deletion.
CVE-2019-17235 1 Getigniteup 1 Igniteup 2021-07-21 5.0 MEDIUM 5.3 MEDIUM
includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows information disclosure.
CVE-2019-17237 1 Getigniteup 1 Igniteup 2019-11-12 6.8 MEDIUM 8.8 HIGH
includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows CSRF.
CVE-2019-17236 1 Getigniteup 1 Igniteup 2019-11-12 4.3 MEDIUM 6.1 MEDIUM
includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress is vulnerable to stored XSS.