Xjb Rest Api To Miniprogram
4 CVEs affecting Xjb Rest Api To Miniprogram. Latest disclosed: 2026-03-21. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-8485 | Critical | 9.8 | 2024-09-25 | The REST API TO MiniProgram plugin for WordPress is vulnerable to privilege escalation via account takeovr in all versions up to, and including, 4.7.1 via the… |
CVE-2024-8484 | High | 7.5 | 2024-09-25 | The REST API TO MiniProgram plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the /wp-json/watch-life-net/v1/comment/getcomments… |
CVE-2026-3460 | Medium | 5.3 | 2026-03-21 | The REST API TO MiniProgram plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.2. This is due to… |
CVE-2025-28886 | Medium | 4.3 | 2025-03-11 | Cross-Site Request Forgery (CSRF) vulnerability in xjb REST API TO MiniProgram rest-api-to-miniprogram allows Cross Site Request Forgery.This issue affects RES… |