Lucene search

Accordions Security Vulnerabilities

cve

CVE-2022-33198

Unauthenticated WordPress Options Change vulnerability in Biplob Adhikari's Accordions plugin <= 2.0.2 at WordPress.

9.8CVSS

5.2AI Score

0.001EPSS

2022-07-21 06:15 PM

cve

CVE-2022-38104

Auth. WordPress Options Change (siteurl, users_can_register, default_role, admin_email and new_admin_email) vulnerability in Biplob Adhikari's Accordions – Multiple Accordions or FAQs Builder plugin (versions <= 2.0.3 on WordPress.

7.2CVSS

6.9AI Score

0.001EPSS

2022-10-21 04:15 PM

cve

CVE-2022-45082

Multiple Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerabilities in Accordions plugin <= 2.0.3 on WordPress via &addons-style-name and &accordions_or_faqs_license_key.

4.8CVSS

5AI Score

0.001EPSS

2022-11-18 11:15 PM

cve

CVE-2023-25962

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Biplob Adhikari Accordion – Multiple Accordion or FAQs Builder plugin <= 2.3.0 versions.

5.9CVSS

4.8AI Score

0.0005EPSS

2023-05-04 01:15 PM

cve

CVE-2024-37122

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Biplob Adhikari Accordions allows Stored XSS.This issue affects Accordions: from n/a through 2.3.5.

5.9CVSS

5.8AI Score

0.0004EPSS

2024-07-22 10:15 AM