Filtered by vendor Hmplugin Subscriptions
Total 6 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-48288 1 Hmplugin 1 Jobwp 2024-11-21 7.5 High
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HM Plugin WordPress Job Board and Recruitment Plugin – JobWP.This issue affects WordPress Job Board and Recruitment Plugin – JobWP: from n/a through 2.1.
CVE-2023-29384 1 Hmplugin 1 Jobwp 2024-11-21 10 Critical
Unrestricted Upload of File with Dangerous Type vulnerability in HM Plugin WordPress Job Board and Recruitment Plugin – JobWP.This issue affects WordPress Job Board and Recruitment Plugin – JobWP: from n/a through 2.0.
CVE-2023-23705 1 Hmplugin 1 Wordpress Books Gallery 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in HM Plugin WordPress Books Gallery plugin <= 4.4.8 versions.
CVE-2022-47422 1 Hmplugin 1 Accept Stripe Donation - Aidwp 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in HM Plugin Accept Stripe Donation – AidWP plugin <= 3.1.5 versions.
CVE-2021-24602 1 Hmplugin 1 Hm Multiple Roles 2024-11-21 8.8 High
The HM Multiple Roles WordPress plugin before 1.3 does not have any access control to prevent low privilege users to set themselves as admin via their profile page
CVE-2024-50459 1 Hmplugin 2 Accept Stripe Donation - Aidwp, Aidwp 2024-11-07 5.3 Medium
Missing Authorization vulnerability in HM Plugin WordPress Stripe Donation and Payment Plugin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress Stripe Donation and Payment Plugin: from n/a through 3.2.3.