Infographic Maker
Approved changes feed: RSS · Atom
cpe:2.3:a:quantumcloud:infographic_maker:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Quantumcloud (fc50f2d3-47a6-505c-9932-77dd419877b0) |
|---|---|
| Product | Infographic Maker (eace929c-f22a-5ce1-bcc8-091cb1eef2c3) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/wpplugins/infographic-and-list-builder-ilist |
purl2cpe | 2026-06-01 10:16:10.859834 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-32696 |
vulnerable | 2026-06-03 14:55:47.770983 |
WordPress AI Infographic Maker OpenAI plugin <= 4.6.6 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QuantumCloud Infographic Maker – iList allows Stored XSS.This issue affects Infographic Maker – iList: from n/a through 4.6.6.
Published: 2024-04-22T07:50:40.242Z
Updated: 2026-04-28T16:09:39.247Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-0747 |
vulnerable | 2026-06-03 14:45:56.822163 |
Infographic Maker - iList < 4.3.8 - Unauthenticated SQL Injection
The Infographic Maker WordPress plugin before 4.3.8 does not validate and escape the post_id parameter before using it in a SQL statement via the qcld_upvote_action AJAX action (available to unauthenticated and authenticated users), leading to an unauthenticated SQL Injection
Published: 2022-03-21T18:56:03.000Z
Updated: 2024-08-02T23:40:03.549Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.