mijnpress CVE Vulnerabilities & CVE List (5)

Products (CPE): — CVEs: 5

mijnpress vulnerability overview

Aggregates CVE and security vulnerability intelligence across all mijnpress-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Disclosed issues often relate to vendor risk csrf and vendor risk cross-site scripting; exposure may include vendor impact session compromise in vendor surface software deployment and vendor surface production workloads contexts.

Vulnerability distribution trend (last 24 months)

Showing 15 of 5 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2024-13850 The Simple add pages or posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled. [email protected] 5.5 0.16% 2025-02-08 2025-02-24
CVE-2023-27430 Cross-Site Request Forgery (CSRF) vulnerability in Ramon Fincken Mass Delete Unused Tags plugin <= 2.0.0 versions. [email protected] 5.4 0.09% 2023-05-18 2024-11-21
CVE-2023-27423 Cross-Site Request Forgery (CSRF) vulnerability in Ramon Fincken Auto Prune Posts plugin <= 1.8.0 versions. [email protected] 5.4 0.09% 2023-05-18 2024-11-21
CVE-2016-10883 The simple-add-pages-or-posts plugin before 1.7 for WordPress has CSRF for deleting users. [email protected] 6.5 0.09% 2019-08-14 2024-11-21
CVE-2019-14680 The admin-renamer-extended (aka Admin renamer extended) plugin 3.2.1 for WordPress allows wp-admin/plugins.php?page=admin-renamer-extended/admin.php CSRF. [email protected] 5.7 0.12% 2019-08-08 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence