Advancedcoding Comments – Wpdiscuz

6 CVEs affecting Advancedcoding Comments – Wpdiscuz. Latest disclosed: 2026-07-03. Critical: 1, High: 1.

Top CVEs affecting Advancedcoding Comments – Wpdiscuz
CVESeverityScorePublishedSummary
CVE-2024-9488Critical9.82024-10-25The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.6.24. This is due to insufficient v…
CVE-2026-9148High7.22026-07-03The Comments – wpDiscuz plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the guest commenter 'Website' field in versions up to, and includ…
CVE-2024-2477Medium6.42024-04-23The wpDiscuz plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Alternative Text' field of an uploaded image in all versions up to, and…
CVE-2024-6704Medium5.32024-08-02The Comments – wpDiscuz plugin for WordPress is vulnerable to HTML Injection in all versions up to, and including, 7.6.21. This is due to a lack of filtering o…
CVE-2023-3998Medium5.32023-10-20The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the userRate function in versions…
CVE-2023-3869Medium5.32023-10-20The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the voteOnComment function in vers…