Mainwp Child Reports Security Vulnerabilities and Issues — Mainwp Child Reports CVE List

Lucene search

MainwpMainwp Child Reports

3 matches found

CVE•added 2024/04/26 11:15 a.m.•45 views

CVE-2024-33680

Cross-Site Request Forgery (CSRF) vulnerability in MainWP MainWP Child Reports.This issue affects MainWP Child Reports: from n/a through 2.1.1.

5.4CVSS6.8AI score0.00117EPSS

CVE•added 2024/08/08 3:15 a.m.•42 views

CVE-2024-7492

The MainWP Child Reports plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2. This is due to missing or incorrect nonce validation on the network_options_action() function. This makes it possible for unauthenticated attackers to update arbitrar...

8.8CVSS8.6AI score0.00112EPSS

CVE•added 2021/10/18 2:15 p.m.•33 views

CVE-2021-24754

The MainWP Child Reports WordPress plugin before 2.0.8 does not validate or sanitise the order parameter before using it in a SQL statement in the admin dashboard, leading to an SQL injection issue

7.2CVSS7.2AI score0.00567EPSS