Ampforwp Accelerated_mobile_pages

7 CVEs affecting Ampforwp Accelerated_mobile_pages. Latest disclosed: 2024-12-18. Critical: 0, High: 1.

Top CVEs affecting Ampforwp Accelerated_mobile_pages
CVESeverityScorePublishedSummary
CVE-2024-9598High8.82024-10-25The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.99.1. This…
CVE-2024-1043Medium6.52024-02-29The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'amppb_remov…
CVE-2024-6896Medium6.42024-07-24The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and inc…
CVE-2024-11254Medium6.12024-12-18The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the disqus_name parameter in all versions up…
CVE-2024-0587Medium6.12024-01-23The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'disqus_name' parameter in all versions…
CVE-2021-23209Medium4.82022-03-18Multiple Authenticated (admin user role) Persistent Cross-Site Scripting (XSS) vulnerabilities discovered in AMP for WP – Accelerated Mobile Pages WordPress pl…
CVE-2021-23150Medium4.82022-03-18Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability discovered in AMP for WP – Accelerated Mobile Pages plugin <= 1.0.77.31 versions.