This page lists publicly disclosed CVE vulnerabilities affecting mainwp mainwp_child_reports (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-33680 | Cross-Site Request Forgery (CSRF) vulnerability in MainWP MainWP Child Reports.This issue affects MainWP Child Reports: from n/a through 2.1.1. | [email protected] | 5.4 | 0.11% | 2024-04-26 | 2026-04-28 |
| CVE-2021-24754 | The MainWP Child Reports WordPress plugin before 2.0.8 does not validate or sanitise the order parameter before using it in a SQL statement in the admin dashboard, leading to an SQL injection issue | [email protected] | 7.2 | 0.57% | 2021-10-18 | 2024-11-21 |