Contextual Related Posts@* Security Vulnerabilities and Issues — Contextual Related Posts@* CVE List

Lucene search

AjaydsouzaContextual Related Posts*

3 matches found

CVE•added 2023/02/06 8:15 p.m.•68 views

CVE-2023-0252

The Contextual Related Posts WordPress plugin before 3.3.1 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

5.4CVSS5.3AI score0.00237EPSS

CVE•added 2014/06/02 3:55 p.m.•35 views

CVE-2014-3937

SQL injection vulnerability in the Contextual Related Posts plugin before 1.8.10.2 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

7.5CVSS8.7AI score0.00367EPSS

CVE•added 2014/06/02 3:55 p.m.•29 views

CVE-2013-2710

Cross-site request forgery (CSRF) vulnerability in the Contextual Related Posts plugin before 1.8.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via unspecified vectors.

6.8CVSS6.6AI score0.0014EPSS