Tri Vulnerabilities
Comprehensive security vulnerability database for Tri products
2
0
2
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2022-4759 | 5.4 | This vulnerability allows an attacker with contributor permissions or higher to inject malicious scripts into a WordPress page or post, which can then execute when other users view the content. It occurs because the GigPress plugin fails to properly check and clean up certain shortcode attributes before displaying them. | trigigpress | Exploit Available | about 3 years agoFeb 13, 2023 |
| CVE-2015-9354 | 4.8 | This vulnerability allows an attacker to inject malicious scripts into web pages viewed by users of the gigpress plugin for WordPress, potentially stealing sensitive information or hijacking user sessions. It can be exploited if the attacker can input data into the plugin without proper validation, which could happen in forms or comments. | trigigpress | Exploit Available | over 6 years agoAug 28, 2019 |
About Tri Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Tri products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.