Filters

Software

wedevs happy addons for elementor
6
wedevs wp erp
6
wedevs dokan
5
wedevs wp project manager
5
wedevs wp user frontend
2
wedevs wemail wordpress
1
wedevs woocommerce conversion tracking wordpress
1

Wedevs Wp ErpWP ERP <= 1.13.0 - Authenticated (Accounting Manager+) SQL Injection via vendor_id

high
8.8
EPSS
0.05%
First published (updated )
CVE-2024-6666

Wedevs Happy Addons For ElementorHappy Addons for Elementor <= 3.11.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Gradient Heading Widget

medium
6.4
EPSS
0.05%
First published (updated )
CVE-2024-5790

Wedevs Wemail WordpressWordPress weMail plugin <= 1.14.2 - Broken Access Control vulnerability

medium
5.3
First published (updated )
CVE-2024-34822

Wedevs Woocommerce Conversion Tracking WordpressWordPress WooCommerce Conversion Tracking plugin <= 2.0.11 - Broken Access Control vulnerability

medium
6.3
First published (updated )
CVE-2023-52217

Wedevs DokanDokan < 3.6.4 - Vendor Stored Cross-Site Scripting

medium
5.4
First published (updated )
CVE-2022-3194

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wedevs Happy Addons For ElementorXSS

medium
6.1
EPSS
0.07%
First published (updated )
CVE-2023-6632

Wedevs Wp ErpWordPress WP ERP Plugin <= 1.12.8 is vulnerable to SQL Injection

high
7.6
EPSS
0.05%
First published (updated )
CVE-2024-21747

Wedevs Happy Addons For ElementorWordPress Happy Addons for Elementor Plugin <= 3.9.1.1 is vulnerable to Server Side Request Forgery (SSRF)

medium
6.5
First published (updated )
CVE-2023-51676

Wedevs DokanWordPress Dokan Plugin <= 3.7.12 is vulnerable to SQL Injection

high
8.1
First published (updated )
CVE-2023-26525

CVE-2023-34382WordPress Dokan Plugin <= 3.7.19 is vulnerable to PHP Object Injection

high
8.8
First published (updated )
CVE-2023-34382

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wedevs Wp Project ManagerWordPress WP Project Manager Plugin <= 2.6.7 is vulnerable to Cross Site Scripting (XSS)

medium
6.5
First published (updated )
CVE-2023-49860

Wedevs Wp Project ManagerWordPress WP Project Manager Plugin <= 2.6.0 is vulnerable to SQL Injection

critical
9.8
First published (updated )
CVE-2023-34383

Wedevs Happy Addons For ElementorXSS

high
7.1
First published (updated )
CVE-2023-41236

Wedevs Wp Project ManagerThe WP Project Manager plugin for WordPress is vulnerable to privilege escalation in versions up to,…

high
8.8
First published (updated )
CVE-2023-3636

Wedevs Wp ErpXSS

high
7.1
First published (updated )
CVE-2023-34008

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wedevs Happy Addons For ElementorWordPress Happy Addons for Elementor Plugin <= 3.8.2 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-28989

Wedevs DokanCSRF

medium
4.3
First published (updated )
CVE-2020-36748

Wedevs Wp Project ManagerCSRF

high
8.8
First published (updated )
CVE-2020-36745

Wedevs Wp ErpCSRF

medium
4.3
First published (updated )
CVE-2020-36735

Wedevs Wp ErpWP ERP < 1.12.4 - Admin+ SQL Injection

high
7.2
First published (updated )
CVE-2023-2744

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wedevs Wp ErpWP ERP < 1.12.4 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2023-2743

Wedevs DokanDokan < 3.7.6 - Unauthenticated SQLi

critical
9.8
First published (updated )
CVE-2022-3915

Wedevs Wp User FrontendWP User Frontend < 3.5.29 - Obscure Registration as Admin

critical
9.8
First published (updated )
CVE-2021-24649

Wedevs Wp User FrontendWP User Frontend < 3.5.26 - SQL Injection to Reflected Cross-Site Scripting

high
8.8
First published (updated )
CVE-2021-25076

Wedevs Wp Project ManagerWordPress WP Project Manager plugin <= 2.4.13 - Stored Cross-Site Scripting (XSS) vulnerability

medium
5.4
First published (updated )
CVE-2021-36826

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wedevs Happy Addons For ElementorHappy Addons for Elementor Free < 2.24.0 and Pro < 1.17.0 - Contributor+ Stored XSS

medium
5.4
First published (updated )
CVE-2021-24292

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203