3 matches found
CVE-2026-25003 WordPress Client Portal plugin <= 1.2.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in madalin.ungureanu Client Portal client-portal allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Client Portal: from n/a through = 1.2.1...
CVE-2026-25003
CVE-2026-25003 affects the WordPress Client Portal plugin (madalin.ungureanu) for WordPress, with versions up to and including 1.2.1. The issue is a Missing Authorization vulnerability arising from incorrectly configured access control security levels, effectively a broken access control defect. ...
WordPress Client Portal : SuiteDash Direct Login Plugin <= 1.7.7 is vulnerable to Cross Site Scripting (XSS)
Software Client Portal : SuiteDash Direct Login Type Plugin Vulnerable versions = 1.7.7 Fixed in 1.8.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-38476 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 8a71f3f395a0 Credits...