CVE-2019-15842

The easy-pdf-restaurant-menu-upload plugin before 1.1.2 for WordPress has XSS.

Source: CVE-2019-15842

CVE-2019-15839

The sina-extension-for-elementor plugin before 2.2.1 for WordPress has local file inclusion.

Source: CVE-2019-15839

CVE-2019-15841

The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajax_woo_infobanner_post_click, ajax_woo_infobanner_post_xout, or ajax_fb_toggle_visibility.

Source: CVE-2019-15841

CVE-2019-15840

The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF.

Source: CVE-2019-15840

CVE-2019-15836

The wp-ultimate-recipe plugin before 3.12.7 for WordPress has stored XSS.

Source: CVE-2019-15836

CVE-2019-15838

The custom-404-pro plugin before 3.2.8 for WordPress has reflected XSS, a different vulnerability than CVE-2019-14789.

Source: CVE-2019-15838

CVE-2019-15834

The webp-converter-for-media plugin before 1.0.3 for WordPress has CSRF.

Source: CVE-2019-15834

CVE-2019-15837

The webp-express plugin before 0.14.8 for WordPress has stored XSS.

Source: CVE-2019-15837

CVE-2019-15837
{$inline_image}
The webp-express plugin before 0.14.8 for WordPress has stored XSS.

Source: CVE-2019-15837

CVE-2019-15835

The wp-better-permalinks plugin before 3.0.5 for WordPress has CSRF.

Source: CVE-2019-15835