Wp Docs Security Vulnerabilities and Issues — Wp Docs CVE List

AndroidbubbleWp Docs

4 matches found

CVE•added 2024/12/09 11:31 a.m.•58 views

CVE-2023-30873

CVE-2023-30873 is a Missing Authorization vulnerability in the WordPress WP Docs plugin, exploitable via incorrectly configured access control. Affected versions are WP Docs

8.8CVSS8.5AI score0.00177EPSS

CVE•added 2024/06/08 2:21 p.m.•56 views

CVE-2024-35696

CVE-2024-35696 affects the WP Docs WordPress plugin. The vulnerability is a Cross-Site Scripting issue (Reflected XSS) in WP Docs, with exploitation possible via input reflected during web page generation. Impact is user-side: potential credential/session data exposure through injected scripts. A...

7.1CVSS7AI score0.00213EPSS

CVE•added 2024/12/21 7:3 a.m.•55 views

CVE-2024-12635

CVE-2024-12635 concerns the WP Docs plugin for WordPress. The vulnerability is a time-based SQL Injection via the dir_id parameter in all versions up to and including 2.2.0, caused by insufficient escaping in the user-supplied input and inadequate preparation in the SQL query. It allows authentic...

6.5CVSS6.6AI score0.00493EPSS

CVE•added 2025/01/07 10:49 a.m.•48 views

CVE-2024-56288

CVE-2024-56288 is a Stored XSS in the WP Docs WordPress plugin (Fahad Mahmood). Affected: WP Docs versions up to 2.2.1. Root cause: Improper neutralization of input during web page generation. Impact per sources: cross-site scripting could affect authenticated users; no exploit details provided b...

5.9CVSS7.2AI score0.00135EPSS