Wpsymposiumpro Wp Symposium — known CVE vulnerabilities
Every CVE whose affected-product data names Wpsymposiumpro Wp Symposium, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2014-10021 — CVSS 7.5 (high): Unrestricted file upload vulnerability in UploadHandler.php in the WP Symposium plugin 14.11 for WordPress allows remote attackers to…
CVE-2014-8810 — CVSS 6.5 (medium): SQL injection vulnerability in ajax/mail_functions.php in the WP Symposium plugin before 14.11 for WordPress allows remote authenticated…
CVE-2013-2694 — CVSS 5.8 (medium): Open redirect vulnerability in invite.php in the WP Symposium plugin 13.04 for WordPress allows remote attackers to redirect users to…
CVE-2011-3841 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in uploadify/get_profile_avatar.php in the WP Symposium plugin before 11.12.08 for WordPress…
CVE-2013-2695 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in invite.php in the WP Symposium plugin before 13.04 for WordPress allows remote attackers to…
CVE-2014-8809 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the WP Symposium plugin before 14.11 for WordPress allow remote attackers to inject…