Absolutely Glamorous Custom Admin Security Vulnerabilities and Issues — Absolutely Glamorous Custom Admin CVE List

Lucene search

CusminAbsolutely Glamorous Custom Admin

2 matches found

CVE•added 2024/04/25 6:15 a.m.•46 views

CVE-2024-2907

The AGCA WordPress plugin before 7.2.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

6.8CVSS7.6AI score0.00252EPSS

CVE•added 2024/04/29 8:15 a.m.•43 views

CVE-2024-33627

Server-Side Request Forgery (SSRF) vulnerability in Cusmin Absolutely Glamorous Custom Admin.This issue affects Absolutely Glamorous Custom Admin: from n/a through 7.2.2.

4.4CVSS6.8AI score0.0011EPSS