Specialk User Submitted Posts – Enable Users To Submit Posts From The Front End

7 CVEs affecting Specialk User Submitted Posts – Enable Users To Submit Posts From The Front End. Latest disclosed: 2026-02-18. Critical: 1, High: 2.

Top CVEs affecting Specialk User Submitted Posts – Enable Users To Submit Posts From The Front End
CVESeverityScorePublishedSummary
CVE-2019-25138Critical9.82023-06-07The User Submitted Posts plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the usp_check_images function in v…
CVE-2026-0800High7.22026-01-24The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom fie…
CVE-2023-4308High7.22023-08-15The User Submitted Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘user-submitted-content’ parameter in versions up to, and in…
CVE-2026-0913Medium6.42026-01-16The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's '…
CVE-2023-4779Medium6.42023-09-06The User Submitted Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's [usp_gallery] shortcode in versions up to, and incl…
CVE-2026-2126Medium5.32026-02-18The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is vulnerable to Incorrect Authorization in all versions up to…
CVE-2025-2874Medium4.42025-04-03The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings…