Admin Management Xtended Project ≫ Admin Management Xtended

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

6.5

CVE-2022-1599

Exploit

EPSS 0.22%
Published 11.07.2022 13:15:08
Last modified 21.11.2024 06:41:02

The Admin Management Xtended WordPress plugin before 2.4.5 does not have CSRF checks in some of its AJAX actions, allowing attackers to make a logged users with the right capabilities to call them. This can lead to changes in post status (draft, publ...

8.8

CVE-2022-29450

EPSS 0.14%
Published 15.06.2022 19:15:11
Last modified 21.11.2024 06:59:06

Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Admin Management Xtended plugin <= 2.4.4 at WordPress.

4.3

CVE-2015-9390

Exploit

EPSS 0.13%
Published 20.09.2019 15:15:12
Last modified 21.11.2024 02:40:30

The admin-management-xtended plugin before 2.4.0.1 for WordPress has privilege escalation because wp_ajax functions are mishandled.