Emarketdesign Request A Quote
By the Year
In 2024 there have been 0 vulnerabilities in Emarketdesign Request A Quote . Request A Quote did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 2 | 6.80 |
2021 | 2 | 5.10 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Request A Quote vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Emarketdesign Request A Quote Security Vulnerabilities
The Request a Quote WordPress plugin through 2.3.7 does not validate uploaded CSV files
CVE-2022-2240
8.8 - High
- July 25, 2022
The Request a Quote WordPress plugin through 2.3.7 does not validate uploaded CSV files, allowing unauthenticated users to attach a malicious CSV file to a quote, which could lead to a CSV injection once an admin download and open it
CSV Injection
The Request a Quote WordPress plugin before 2.3.9 does not sanitise and escape some of its settings
CVE-2022-2239
4.8 - Medium
- July 25, 2022
The Request a Quote WordPress plugin before 2.3.9 does not sanitise and escape some of its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
XSS
The Request a Quote WordPress plugin before 2.3.9 does not sanitise, validate or escape some of its settings in the admin dashboard, leading to authenticated Stored Cross-Site Scripting issues even when the unfiltered_html capability is dis
CVE-2021-24489
4.8 - Medium
- October 25, 2021
The Request a Quote WordPress plugin before 2.3.9 does not sanitise, validate or escape some of its settings in the admin dashboard, leading to authenticated Stored Cross-Site Scripting issues even when the unfiltered_html capability is disallowed.
XSS
The Request a Quote WordPress plugin before 2.3.4 did not sanitise and escape some of its quote fields when adding/editing a quote as admin
CVE-2021-24420
5.4 - Medium
- July 12, 2021
The Request a Quote WordPress plugin before 2.3.4 did not sanitise and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues when the quote is output in the 'All Quotes" table.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Emarketdesign Request A Quote or by Emarketdesign? Click the Watch button to subscribe.