Rebelcode Rss Aggregator – Rss Import, News Feeds, Feed To Post, And Autoblogging
7 CVEs affecting Rebelcode Rss Aggregator – Rss Import, News Feeds, Feed To Post, And Autoblogging. Latest disclosed: 2026-03-07. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-1216 | High | 7.2 | 2026-02-17 | The RSS Aggregator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'template' parameter in all versions up to, and including, 5.0… |
CVE-2025-14745 | Medium | 6.4 | 2026-01-23 | The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's… |
CVE-2026-2433 | Medium | 6.1 | 2026-03-07 | The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting via postMessag… |
CVE-2025-14375 | Medium | 6.1 | 2026-01-16 | The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘class… |
CVE-2024-0630 | Medium | 4.4 | 2024-02-05 | The WP RSS Aggregator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the RSS feed source in all versions up to, and including, 4.23.4 du… |
CVE-2024-9583 | Medium | 4.3 | 2024-10-23 | The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress is vulnerable to unauthorized use of functionality due to a mi… |
CVE-2024-6621 | Medium | 4.3 | 2024-07-16 | The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress is vulnerable to unauthorized modification of data due to a mi… |