Vulnerabilities and security researches fordata-tables-generator-by-supsystic data-tables-generator-by-supsystic

Jun 07, 2024

CVE, Research URL: CVE-2022-2114
Home page URL: Security reports for Data Tables Generator by Supsystic
Application: Data Tables Generator by Supsystic
Date: Jul 17, 2022
Research Description: The Data Tables Generator by Supsystic WordPress plugin before 1.10.20 does not sanitise and escape some of its Table settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed (for example in multisite setup)
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2020-12075
Home page URL: Security reports for Data Tables Generator by Supsystic
Application: Data Tables Generator by Supsystic
Date: Apr 23, 2020
Research Description: The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPress lacks capability checks for AJAX actions.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2020-12076
Home page URL: Security reports for Data Tables Generator by Supsystic
Application: Data Tables Generator by Supsystic
Date: Apr 23, 2020
Research Description: The data-tables-generator-by-supsystic plugin before 1.9.92 for WordPress lacks CSRF nonce checks for AJAX actions. One consequence of this is stored XSS.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2024-32829
Home page URL: Security reports for Data Tables Generator by Supsystic
Application: Data Tables Generator by Supsystic
Date: Apr 26, 2024
Research Description: Missing Authorization vulnerability in Supsystic Data Tables Generator by Supsystic.This issue affects Data Tables Generator by Supsystic: from n/a through 1.10.31.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2023-25043
Home page URL: Security reports for Data Tables Generator by Supsystic
Application: Data Tables Generator by Supsystic
Date: Apr 17, 2024
Research Description: Incorrect Authorization vulnerability in Supsystic Data Tables Generator.This issue affects Data Tables Generator: from n/a through 1.10.25.
Affected versions: Min -, max -.
Status: vulnerable

Jan 03, 2025

CVE, Research URL: CVE-2024-56253
Home page URL: Security reports for Data Tables Generator by Supsystic
Application: Data Tables Generator by Supsystic
Date: Jan 02, 2025
Research Description: Missing Authorization vulnerability in supsystic.com Data Tables Generator by Supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Data Tables Generator by Supsystic: from n/a through 1.10.36.
Affected versions: Min -, max -.
Status: vulnerable