Finale Lite
Daman Jeet
Developer
2.20.0
Latest version
5,000
Installations
Feb 26, 2025
Last updated
Vulnerability history
1 present
6 fixed
4 Mitigation rules
- Cross Site Scripting (XSS) Vulnerability<= 2.20.0Jul 28, 2025
- Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Countdown Timer vulnerability<= 2.19.0Mar 11, 2025
- Cross Site Request Forgery (CSRF) vulnerability<= 2.18.0Apr 11, 2024
- Subscriber+ Arbitrary Plugin Installation/Activation vulnerability<= 2.18.0Mar 28, 2024
- Missing Authorization to Unauthenticated System Information Disclosure vulnerability<= 2.17.0Mar 1, 2024
- Arbitrary Content Deletion vulnerability<= 2.16.0Oct 31, 2023
- Arbitrary File Upload vulnerability<= 2.9.0Jun 16, 2019