127 matches found
CVE-2025-49267
CVE-2025-49267 affects WordPress plugin Frontend Admin by DynamiApps (versions up to and including 3.28.3). The issue is an SQL Injection due to improper neutralization of special elements, enabling blind SQL injection. Public references confirm affected software and version range; multiple sourc...
WordPress plugin Frontend Admin by DynamiApps SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability exists in...
PT-2025-33196 · Dynamiapps · Shabti Kaplan Frontend Admin
Name of the Vulnerable Software and Affected Versions: Shabti Kaplan Frontend Admin versions through 3.28.3 Description: An improper neutralization of special elements used in an SQL command vulnerability 'SQL Injection' exists in Shabti Kaplan Frontend Admin by DynamiApps, allowing for blind SQL...
WordPress Frontend Admin by DynamiApps plugin <= 3.28.3 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Frissi0n in WordPress Plugin Frontend Admin by DynamiApps versions = 3.28.3...
CVE-2025-49303
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Path Traversal.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.28.7...
CVE-2025-49303
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Path Traversal.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.28.7...
CVE-2025-49303
CVE-2025-49303 — WordPress plugin Frontend Admin by DynamiApps
CVE-2025-49303 WordPress Frontend Admin by DynamiApps plugin <= 3.28.7 - Arbitrary File Download Vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Path Traversal.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.28.7...
CVE-2025-49303 WordPress Frontend Admin by DynamiApps plugin <= 3.28.7 - Arbitrary File Download Vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Path Traversal.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.28.7...
PT-2025-27922 · Dynamiapps · Frontend Admin
Name of the Vulnerable Software and Affected Versions: Frontend Admin by DynamiApps versions n/a through 3.28.7 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal'. This allows for Path Traversal in the affected...
WordPress plugin Frontend Admin by DynamiApps Path Traversal Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...
CVE-2023-51411
Unrestricted Upload of File with Dangerous Type vulnerability in Shabti Kaplan Frontend Admin by DynamiApps.This issue affects Frontend Admin by DynamiApps: from n/a through 3.18.3...
CVE-2025-26987
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Reflected XSS.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.25.17...
CVE-2025-26987
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Reflected XSS.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.25.17...
CVE-2025-26987
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps allows Reflected XSS. This issue affects Frontend Admin by DynamiApps: from n/a through 3.25.17...
CVE-2025-26987
CVE-2025-26987 describes a Reflected Cross-Site Scripting (XSS) vulnerability in Frontend Admin by DynamiApps (often listed as Frontend Admin by DynamiApps). The initial description states an XSS condition in the Shabti Kaplan Frontend Admin by DynamiApps and indicates affected versions from n/a ...
CVE-2025-26987 WordPress Frontend Admin by DynamiApps plugin <= 3.25.17 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Reflected XSS.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.25.17...
CVE-2025-26987 WordPress Frontend Admin by DynamiApps plugin <= 3.25.17 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Shabti Kaplan Frontend Admin by DynamiApps acf-frontend-form-element allows Reflected XSS.This issue affects Frontend Admin by DynamiApps: from n/a through = 3.25.17...
WordPress plugin Frontend Admin by DynamiApps 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists i...
WordPress Frontend Admin by DynamiApps plugin <= 3.25.17 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Frontend Admin by DynamiApps versions = 3.25.17...