Fernandobt List Category Posts
5 CVEs affecting Fernandobt List Category Posts. Latest disclosed: 2026-04-09. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-10163 | Medium | 6.5 | 2025-12-11 | The List category posts plugin for WordPress is vulnerable to time-based SQL Injection via the ‘starting_with’ parameter of the catlist shortcode in all versio… |
CVE-2026-3005 | Medium | 6.4 | 2026-04-09 | The List category posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catlist' shortcode in all versions up to, and inclu… |
CVE-2024-1051 | Medium | 6.4 | 2024-03-30 | The List category posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catlist' shortcode in all versions up to, and inclu… |
CVE-2023-6994 | Medium | 6.4 | 2024-01-11 | The List category posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catlist' shortcode in all versions up to, and inclu… |
CVE-2025-11377 | Medium | 4.3 | 2025-11-01 | The List category posts plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 0.92.0 via the 'catlist' shortcode due… |