Fancy Comments CVEs and Security Vulnerabilities

Filtered by vendor Heateor Subscriptions

Filtered by product Fancy Comments Subscriptions

Switch to Advanced Search (Beta)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-29804	1 Heateor	1 Fancy Comments	2025-05-13	6.5 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Team Heateor Fancy Comments WordPress allows Stored XSS.This issue affects Fancy Comments WordPress: from n/a through 1.2.14.
CVE-2023-23670	1 Heateor	1 Fancy Comments	2025-02-19	6.5 Medium
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Team Heateor Fancy Comments WordPress plugin <= 1.2.10 versions.

Page 1 of 1.