Data443 Inline_related_posts
4 CVEs affecting Data443 Inline_related_posts. Latest disclosed: 2024-07-29. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-5626 | Medium | 6.1 | 2024-07-12 | The Inline Related Posts WordPress plugin before 3.7.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected C… |
CVE-2024-6487 | Medium | 5.9 | 2024-07-29 | The Inline Related Posts WordPress plugin before 3.8.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin… |
CVE-2024-2444 | Medium | 4.8 | 2024-04-06 | The Inline Related Posts WordPress plugin before 3.5.0 does not sanitise and escape some of its settings, which could allow high privilege users such as Admin… |
CVE-2023-6257 | Medium | 4.3 | 2024-04-11 | The Inline Related Posts WordPress plugin before 3.6.0 is missing authorization in an AJAX action to ensure that users are allowed to see the content of the po… |