Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Patchstack
Patchstackadded 2025/08/29 9:36 p.m.4 views

WordPress Related Posts Lite plugin <= 1.12 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by Claw.k in WordPress Plugin Related Posts Lite versions = 1.12...

4.3CVSS6.7AI score0.00026EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVEadded 2025/04/02 1:28 p.m.5 views

CVE-2025-31569

Cross-Site Request Forgery CSRF vulnerability in wp-buy wordpress related Posts with thumbnails related-posts-list-grid-and-slider-all-in-one allows Stored XSS.This issue affects wordpress related Posts with thumbnails: from n/a through = 3.0.0.1...

7.1CVSS7.2AI score0.0016EPSS
Exploits0References1
Patchstack
Patchstackadded 2024/04/15 12:0 a.m.7 views

WordPress Related Posts for WordPress Plugin <= 4.0.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software Related Posts for WordPress Type Plugin Vulnerable versions = 4.0.3 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32549 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID cc6d55801af6 Credits Dimas...

7.1CVSS6.7AI score0.00234EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2021/04/05 7:15 p.m.0 views

CVE-2021-24211

The WordPress Related Posts plugin through 3.6.4 contains an authenticated admin+ stored XSS vulnerability in the title field on the settings page. By exploiting that an attacker will be able to execute JavaScript code in the user's browser...

5.4CVSS6.2AI score0.00332EPSS
Exploits2References1
NVD
NVDadded 2021/04/05 7:15 p.m.13 views

CVE-2021-24211

The WordPress Related Posts plugin through 3.6.4 contains an authenticated admin+ stored XSS vulnerability in the title field on the settings page. By exploiting that an attacker will be able to execute JavaScript code in the user's browser...

5.4CVSS0.00332EPSS
Exploits2References1
Cvelist
Cvelistadded 2021/04/05 6:27 p.m.15 views

CVE-2021-24180 Related Posts for WordPress < 2.0.4 - Authenticated Reflected Cross-Site Scripting (XSS)

Unvalidated input and lack of output encoding within the Related Posts for WordPress plugin before 2.0.4 lead to a Reflected Cross-Site Scripting XSS vulnerability within the 'lang' GET parameter while editing a post, triggered when users with the capability of editing posts access a malicious UR...

5.5AI score0.00162EPSS
Exploits2References1
WPVulnDB
WPVulnDBadded 2021/03/19 12:0 a.m.27 views

WordPress Related Posts <= 3.6.4 - Authenticated Stored Cross-Site Scripting (XSS)

The plugin contains an authenticated admin+ stored XSS vulnerability in the title field on the settings page. By exploiting that an attacker will be able to execute JavaScript code in the user's browser. PoC Put the following payload in the "Related Posts Title" settings of the plugin...

3.5CVSS1.6AI score0.00332EPSS
Exploits2Affected Software1
WPVulnDB
WPVulnDBadded 2014/08/01 10:59 a.m.17 views

WordPress Related Posts 2.6.1 - Cross-Site Request Forgery

The WordPress Related Posts WordPress plugin was affected by a Cross-Site Request Forgery security vulnerability...

6.8CVSS2.1AI score0.0014EPSS
Exploits0Affected Software1
Rows per page
Query Builder