Wp Extended Security Vulnerabilities
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Extended The Ultimate WordPress Toolkit β WP Extended allows Reflected XSS.This issue affects The Ultimate WordPress Toolkit β WP Extended: from n/a through 2.4.7.
7.1CVSS
7AI Score
0.0005EPSS
The The Ultimate WordPress Toolkit β WP Extended plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the module_all_toggle_ajax() function in all versions up to, and including, 3.0.8. This makes it possib...
8.8CVSS
8.7AI Score
0.001EPSS
The The Ultimate WordPress Toolkit β WP Extended plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.0.8 via the download_file_ajax function. This makes it possible for authenticated attackers, with subscriber access and above, to read the contents of a...
8.8CVSS
8.3AI Score
0.001EPSS
The The Ultimate WordPress Toolkit β WP Extended plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.0.8 via the download_user_ajax function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to extra...
6.5CVSS
6.2AI Score
0.001EPSS
The The Ultimate WordPress Toolkit β WP Extended plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the βselected_optionβ parameter in all versions up to, and including, 3.0.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticate...
6.1CVSS
6AI Score
0.001EPSS
The The Ultimate WordPress Toolkit β WP Extended plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the page parameter in all versions up to, and including, 3.0.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers t...
6.1CVSS
6AI Score
0.001EPSS
The The Ultimate WordPress Toolkit β WP Extended plugin for WordPress is vulnerable to unauthorized modification of user names due to a missing capability check on the wpext_change_admin_name() function in all versions up to, and including, 3.0.8. This makes it possible for authenticated attackers,...
5.4CVSS
5.2AI Score
0.001EPSS
The The Ultimate WordPress Toolkit β WP Extended plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.0.8 via the duplicate_post function due to missing validation on a user controlled key. This makes it possible for authenticated attackers,...
5.4CVSS
5.3AI Score
0.001EPSS