MidnightBSD

Advisories for content_audit_project

CVE-2014-5389 HIGH

SQL injection vulnerability in content-audit-schedule.php in the Content Audit plugin before 1.6.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the "Audited content types" option in the content-audit page to wp-admin/options-general.php.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
content_audit_project content_audit 1.6
content_audit_project content_audit 1.6.0
CVE-2017-18560 MEDIUM

The content-audit plugin before 1.9.2 for WordPress has XSS.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
content_audit_project content_audit *