Unauthenticated WordPress Options Change vulnerability in Biplob Adhikari's Accordions plugin <= 2.0.2 at WordPress.
9.8CVSS
5.2AI Score
0.001EPSS
Auth. WordPress Options Change (siteurl, users_can_register, default_role, admin_email and new_admin_email) vulnerability in Biplob Adhikari's Accordions β Multiple Accordions or FAQs Builder plugin (versions <= 2.0.3 on WordPress.
7.2CVSS
6.9AI Score
0.001EPSS
Multiple Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerabilities in Accordions plugin <= 2.0.3 on WordPress via &addons-style-name and &accordions_or_faqs_license_key.
4.8CVSS
5AI Score
0.001EPSS
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Biplob Adhikari Accordion β Multiple Accordion or FAQs Builder plugin <= 2.3.0 versions.
5.9CVSS
4.8AI Score
0.0005EPSS
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Biplob Adhikari Accordions allows Stored XSS.This issue affects Accordions: from n/a through 2.3.5.
5.9CVSS
5.8AI Score
0.0004EPSS