Kurudrive Vk All In One Expansion Unit

5 CVEs affecting Kurudrive Vk All In One Expansion Unit. Latest disclosed: 2026-02-18. Critical: 0, High: 0.

Top CVEs affecting Kurudrive Vk All In One Expansion Unit
CVESeverityScorePublishedSummary
CVE-2024-2093Medium6.52024-04-09The VK All in One Expansion Unit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 9.95.0.1 via social…
CVE-2025-11737Medium6.42026-02-18The VK All in One Expansion Unit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'vkExUnit_sns_title' parameter in all versions up to…
CVE-2025-11267Medium6.42025-11-18The VK All in One Expansion Unit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_veu_custom_css' parameter in all versions up to, a…
CVE-2025-11265Medium6.42025-11-18The VK All in One Expansion Unit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'vkExUnit_cta_url' and 'vkExUnit_cta_button_text' pa…
CVE-2024-2170Medium6.42024-03-26The VK All in One Expansion Unit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the child page index widget in all versions up to, and i…