Jeroensormani Wp_dashboard_notes
2 CVEs affecting Jeroensormani Wp_dashboard_notes. Latest disclosed: 2025-05-15. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-7239 | High | 7.5 | 2025-05-15 | The WP Dashboard Notes WordPress plugin before 1.0.11 does not validate that the user has access to the post_id parameter in its wpdn_update_note AJAX action… |
CVE-2023-7198 | Medium | 4.3 | 2024-02-27 | The WP Dashboard Notes WordPress plugin before 1.0.11 is vulnerable to Insecure Direct Object References (IDOR) in post_id= parameter. Authenticated users are… |