Webinarpress@* Security Vulnerabilities and Issues — Webinarpress@* CVE List

Lucene search

WebinarpressWebinarpress*

4 matches found

CVE•added 2025/01/08 5:15 a.m.•42 views

CVE-2024-11270

The WordPress Webinar Plugin – WebinarPress plugin for WordPress is vulnerable to arbitrary file creation due to a missing capability check on the 'sync-import-imgs' function and missing file type validation in all versions up to, and including, 1.33.24. This makes it possible for authenticated att...

8.8CVSS8.8AI score0.03115EPSS

CVE•added 2024/08/26 9:15 p.m.•40 views

CVE-2024-43339

Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress allows Cross-Site Scripting (XSS).This issue affects WebinarPress: from n/a through 1.33.20.

6.1CVSS6.6AI score0.00038EPSS

CVE•added 2025/05/07 3:16 p.m.•39 views

CVE-2025-47635

Server-Side Request Forgery (SSRF) vulnerability in WPWebinarSystem WebinarPress allows Server Side Request Forgery. This issue affects WebinarPress: from n/a through 1.33.27.

9.8CVSS5.5AI score0.00049EPSS

CVE•added 2025/01/08 5:15 a.m.•38 views

CVE-2024-11271

The WordPress Webinar Plugin – WebinarPress plugin for WordPress is vulnerable to modification of data due to a missing capability check on several functions in all versions up to, and including, 1.33.24. This makes it possible for authenticated attackers, with subscriber-level access and above, to...

8.8CVSS8.4AI score0.00096EPSS