Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Hmplugin Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-47422 1 Hmplugin 1 Accept Stripe Donation - Aidwp 2023-03-16 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in HM Plugin Accept Stripe Donation – AidWP plugin <= 3.1.5 versions.
CVE-2021-24602 1 Hmplugin 1 Hm Multiple Roles 2022-10-25 6.5 MEDIUM 8.8 HIGH
The HM Multiple Roles WordPress plugin before 1.3 does not have any access control to prevent low privilege users to set themselves as admin via their profile page