Wpfront Wpfront_user_role_editor
2 CVEs affecting Wpfront Wpfront_user_role_editor. Latest disclosed: 2024-04-02. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-24984 | Medium | 6.1 | 2021-12-27 | The WPFront User Role Editor WordPress plugin before 3.2.1.11184 does not sanitise and escape the changes-saved parameter before outputting it back in the admi… |
CVE-2024-2931 | Medium | 4.3 | 2024-04-02 | The WPFront User Role Editor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.2.1.11184 via the wpf… |