Tomasz Staszyszyn

#5975of 53,633
45.3Total CVSS
Vulnerabilities · 6
Medium
3
High
1
Critical
2
PT-2023-24842
5.9
2023-06-22
WordPress · Kanban For Wordpress · CVE-2023-34368
**Name of the Vulnerable Software and Affected Versions** Kanban for WordPress Kanban Boards for WordPress plugin versions prior to 2.5.21 **Description** A Stored Cross-Site Scripting (XSS) vulnerability exists, allowing authentication bypass for admin+ users. **Recommendations** For versions prior to 2.5.21, update to version 2.5.21 or later to resolve the issue.
PT-2022-27259
9.9
2022-12-15
WordPress · Cryptocurrency Widgets Pack Plugin · CVE-2022-44588
**Name of the Vulnerable Software and Affected Versions** Cryptocurrency Widgets Pack Plugin versions <=1.8.1 **Description** The issue is related to an unauthorized SQL Injection vulnerability. This vulnerability affects the Cryptocurrency Widgets Pack Plugin on WordPress. **Recommendations** For versions <=1.8.1, update to a version higher than 1.8.1 to resolve the issue.
PT-2022-26508
9.1
2022-12-06
WordPress · Easy Wp Smtp · CVE-2022-42699
**Name of the Vulnerable Software and Affected Versions** Easy WP SMTP plugin versions 1.5.1 and earlier **Description** The issue is related to an authenticated Remote Code Execution vulnerability. This allows for potential code execution on the server, which could lead to various malicious activities. **Recommendations** For versions 1.5.1 and earlier, update to a version later than 1.5.1 to resolve the issue.
PT-2022-27651
8.7
2022-12-06
WordPress · Easy Wp Smtp · CVE-2022-45829
**Name of the Vulnerable Software and Affected Versions** Easy WP SMTP plugin versions 1.5.1 and earlier **Description** The issue is related to an Authenticated Path Traversal vulnerability. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited. **Recommendations** For versions 1.5.1 and earlier, update to a version later than 1.5.1 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this vulnerability.
PT-2022-27653
6.8
2022-12-06
WordPress · Easy Wp Smtp · CVE-2022-45833
**Name of the Vulnerable Software and Affected Versions** Easy WP SMTP plugin versions 1.5.1 and earlier **Description** The issue is related to an Authenticated Path Traversal vulnerability. This vulnerability affects the Easy WP SMTP plugin on WordPress. **Recommendations** For Easy WP SMTP plugin versions 1.5.1 and earlier, update to a version later than 1.5.1 to resolve the issue.
PT-2022-27271
4.9
2022-11-18
WordPress · S2W – Import Shopify To Woocommerce · CVE-2022-44634
**Name of the Vulnerable Software and Affected Versions** S2W – Import Shopify to WooCommerce plugin version 1.1.12 and earlier **Description** The issue is related to an Arbitrary File Read vulnerability that affects users with admin+ authentication. This could potentially allow unauthorized access to sensitive files. **Recommendations** For S2W – Import Shopify to WooCommerce plugin version 1.1.12 and earlier, update to a version later than 1.1.12 to resolve the issue.