Vulnerabilities (CVE)

Filtered by vendor Iframe Project Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-52125	1 Iframe Project	1 Iframe	2024-01-10	N/A	5.4 MEDIUM
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webvitaly iframe allows Stored XSS.This issue affects iframe: from n/a through 4.8.
CVE-2023-24394	1 Iframe Project	1 Iframe	2023-08-29	N/A	4.8 MEDIUM
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Gopi Ramasamy iframe popup plugin <= 3.3 versions.
CVE-2020-12696	1 Iframe Project	1 Iframe	2020-05-11	4.3 MEDIUM	6.1 MEDIUM
The iframe plugin before 4.5 for WordPress does not sanitize a URL.