Ibenic - Simple Giveaways CVE

Filtered by vendor Ibenic Subscribe

Filtered by product Simple Giveaways

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-31086	1 Ibenic	1 Simple Giveaways	2023-11-15	N/A	8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Igor Benic Simple Giveaways – Grow your business, email lists and traffic with contests plugin <= 2.46.0 versions.
CVE-2021-24298	1 Ibenic	1 Simple Giveaways	2021-05-28	4.3 MEDIUM	6.1 MEDIUM
The method and share GET parameters of the Giveaway pages were not sanitised, validated or escaped before being output back in the pages, thus leading to reflected XSS

Vulnerabilities (CVE)