Pickplugins Accordion

6 CVEs affecting Pickplugins Accordion. Latest disclosed: 2025-10-22. Critical: 0, High: 1.

Top CVEs affecting Pickplugins Accordion
CVESeverityScorePublishedSummary
CVE-2025-32143High8.82025-04-11Deserialization of Untrusted Data vulnerability in PickPlugins Accordion accordions allows Object Injection.This issue affects Accordion: from n/a through <= 2…
CVE-2025-53421Medium6.52025-10-22Missing Authorization vulnerability in PickPlugins Accordion accordions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affe…
CVE-2025-58678Medium6.52025-09-22Missing Authorization vulnerability in PickPlugins Accordion accordions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affe…
CVE-2024-47342Medium6.52024-10-06Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Accordion accordions allows Stored XSS.This i…
CVE-2021-24283Medium5.42021-05-14The tab GET parameter of the settings page is not sanitised or escaped when being output back in an HTML attribute, leading to a reflected XSS issue.
CVE-2020-13644Medium5.42020-05-28An issue was discovered in the Accordion plugin before 2.2.9 for WordPress. The unprotected AJAX wp_ajax_accordions_ajax_import_json action allowed any authent…