This page lists publicly disclosed CVE vulnerabilities affecting addify automatic_user_roles_switcher (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-3419 | The Automatic User Roles Switcher WordPress plugin before 1.1.2 does not have authorisation and proper CSRF checks, allowing any authenticated users like subscriber to add any role to themselves, such as administrator | [email protected] | 6.5 | 0.19% | 2022-10-31 | 2025-05-06 |