Couleurcitron Tarteaucitron-wp
2 CVEs affecting Couleurcitron Tarteaucitron-wp. Latest disclosed: 2025-05-15. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-11719 | Medium | 6.1 | 2025-05-15 | The tarteaucitron-wp WordPress plugin before 0.3.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow… |
CVE-2024-11718 | Medium | 5.4 | 2025-05-15 | The tarteaucitron-wp WordPress plugin before 0.3.0 allows author level and above users to add HTML into a post/page, which could allow users with the contribut… |