Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Companion_sitemap_generator
(Codeermeneer)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-03-13 | CVE-2023-0066 | The Companion Sitemap Generator WordPress plugin through 4.5.1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. | Companion_sitemap_generator | 5.4 | ||
| 2023-07-10 | CVE-2023-1780 | The Companion Sitemap Generator WordPress plugin before 4.5.3 does not sanitise and escape some parameters before outputting them back in pages, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin. | Companion_sitemap_generator | 6.1 | ||
| 2019-08-16 | CVE-2019-15113 | The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF. | Companion_sitemap_generator | 8.8 |