CVEs and Security Vulnerabilities CVEs and Security Vulnerabilities - OpenCVE

ReportizFlow

Filtered by vendor Cusmin Subscriptions

Filtered by product Absolutely Glamorous Custom Admin Subscriptions

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2021-36823	1 Cusmin	1 Absolutely Glamorous Custom Admin	2024-11-21	6.6 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cusmin AGCA - Absolutely Glamorous Custom Admin (WordPress plugin) allows Stored XSS.This issue affects AGCA - Absolutely Glamorous Custom Admin (WordPress plugin): from n/a through 6.8.
CVE-2021-24944	1 Cusmin	1 Absolutely Glamorous Custom Admin	2024-11-21	4.8 Medium
The Custom Dashboard & Login Page WordPress plugin before 7.0 does not sanitise some of its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Page 1 of 1.