Lucene search

Related Posts Security Vulnerabilities

cve

CVE-2015-9361

The Related Posts plugin before 1.8.2 for WordPress has XSS via add_query_arg() and remove_query_arg().

6.1CVSS

6AI Score

0.001EPSS

2019-08-28 12:15 PM

cve

CVE-2021-24180

Unvalidated input and lack of output encoding within the Related Posts for WordPress plugin before 2.0.4 lead to a Reflected Cross-Site Scripting (XSS) vulnerability within the 'lang' GET parameter while editing a post, triggered when users with the capability of editing posts access a malicious UR...

5.4CVSS

5.3AI Score

0.001EPSS

2021-04-05 07:15 PM

cve

CVE-2021-24482

The Related Posts for WordPress plugin through 2.0.4 does not sanitise its heading_text and CSS settings, allowing high privilege users (admin) to set XSS payloads in them, leading to Stored Cross-Site Scripting issues.

4.8CVSS

4.7AI Score

0.001EPSS

2021-07-19 11:15 AM

cve

CVE-2022-3506

Cross-site Scripting (XSS) - Stored in GitHub repository barrykooij/related-posts-for-wp prior to 2.1.3.

5.4CVSS

5.3AI Score

0.001EPSS

2022-10-14 02:15 PM