Pftool Alfie – Feed Plugin
2 CVEs affecting Pftool Alfie – Feed Plugin. Latest disclosed: 2026-05-22. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-4069 | Medium | 6.1 | 2026-03-21 | The Alfie – Feed Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'naam' parameter in all versions up to, and including, 1.2.1… |
CVE-2026-4070 | Medium | 4.3 | 2026-05-22 | The Alfie – Feed Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.1. This is due to missing no… |