Never5 Related_posts
5 CVEs affecting Never5 Related_posts. Latest disclosed: 2024-03-13. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2015-9361 | Medium | 6.1 | 2019-08-28 | The Related Posts plugin before 1.8.2 for WordPress has XSS via add_query_arg() and remove_query_arg(). |
CVE-2024-0592 | Medium | 5.4 | 2024-03-13 | The Related Posts for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2.1. This is due to mi… |
CVE-2022-3506 | Medium | 5.4 | 2022-10-14 | Cross-site Scripting (XSS) - Stored in GitHub repository barrykooij/related-posts-for-wp prior to 2.1.3. |
CVE-2021-24180 | Medium | 5.4 | 2021-04-05 | Unvalidated input and lack of output encoding within the Related Posts for WordPress plugin before 2.0.4 lead to a Reflected Cross-Site Scripting (XSS) vulnera… |
CVE-2021-24482 | Medium | 4.8 | 2021-07-19 | The Related Posts for WordPress plugin through 2.0.4 does not sanitise its heading_text and CSS settings, allowing high privilege users (admin) to set XSS payl… |