Advanced Access Manager Security Vulnerabilities and Issues — Advanced Access Manager CVE List

Lucene search

VasyltechAdvanced Access Manager

3 matches found

CVE•added 2024/03/19 2:15 p.m.•56 views

CVE-2024-29127

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AAM Advanced Access Manager allows Reflected XSS.This issue affects Advanced Access Manager: from n/a through 6.9.20.

7.1CVSS7.1AI score0.00093EPSS

CVE•added 2024/02/01 11:15 a.m.•43 views

CVE-2023-51674

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AAM Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More allows Stored XSS.This issue affects Advanced Access Manager – Restricted Content, Users & Roles, Enhance...

6.5CVSS5.4AI score0.00065EPSS

CVE•added 2024/10/16 7:15 a.m.•38 views

CVE-2019-25213

The Advanced Access Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Read in versions up to, and including, 5.9.8.1 due to insufficient validation on the aam-media parameter. This allows unauthenticated attackers to read any file on the server, including sensitive files ...

9.8CVSS8.6AI score0.00969EPSS