Wordpress Popular Posts Security Vulnerabilities and Issues — Wordpress Popular Posts CVE List

Lucene search

Wordpress Popular Posts ProjectWordpress Popular Posts

5 matches found

CVE•added 2023/10/18 2:15 p.m.•93 views

CVE-2023-45607

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Hector Cabrera WordPress Popular Posts plugin

6.5CVSS5.5AI score0.00077EPSS

CVE•added 2021/11/17 6:15 p.m.•92 views

CVE-2021-42362

The WordPress Popular Posts WordPress plugin is vulnerable to arbitrary file uploads due to insufficient input file type validation found in the ~/src/Image.php file which makes it possible for attackers with contributor level access and above to upload malicious files that can be used to obtain re...

8.8CVSS8.8AI score0.82414EPSS

CVE•added 2021/06/28 1:15 a.m.•68 views

CVE-2021-20746

Cross-site scripting vulnerability in WordPress Popular Posts 5.3.2 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.

5.4CVSS5AI score0.00832EPSS

CVE•added 2022/12/07 4:15 a.m.•54 views

CVE-2022-43468

External initialization of trusted variables or data stores vulnerability exists in WordPress Popular Posts 6.0.5 and earlier, therefore the vulnerable product accepts untrusted external inputs to update certain internal variables. As a result, the number of views for an article may be manipulated ...

7.5CVSS7.4AI score0.00234EPSS

CVE•added 2021/09/23 3:15 p.m.•39 views

CVE-2021-36872

Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in WordPress Popular Posts plugin (versions

5.5CVSS5.2AI score0.00164EPSS