CVE-2024-56247
- EPSS 0.46%
- Veröffentlicht 02.01.2025 12:15:26
- Zuletzt bearbeitet 23.04.2026 15:22:42
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AF themes WP Post Author wp-post-author allows SQL Injection.This issue affects WP Post Author: from n/a through <= 3.8.2.
CVE-2024-8757
- EPSS 0.51%
- Veröffentlicht 12.10.2024 10:15:02
- Zuletzt bearbeitet 15.04.2026 00:35:42
The WP Post Author – Boost Your Blog's Engagement with Author Box, Social Links, Co-Authors, Guest Authors, Post Rating System, and Custom User Registration Form Builder plugin for WordPress is vulnerable to time-based SQL Injection via the link...
CVE-2024-37101
- EPSS 0.25%
- Veröffentlicht 22.07.2024 10:15:04
- Zuletzt bearbeitet 21.11.2024 09:23:11
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AF themes WP Post Author allows Stored XSS.This issue affects WP Post Author: from n/a through 3.6.7.
CVE-2024-34387
- EPSS 0.36%
- Veröffentlicht 06.05.2024 19:15:10
- Zuletzt bearbeitet 28.04.2026 19:25:21
Missing Authorization vulnerability in AF themes WP Post Author.This issue affects WP Post Author: from n/a through 3.6.4.
CVE-2024-34389
- EPSS 0.36%
- Veröffentlicht 06.05.2024 19:15:10
- Zuletzt bearbeitet 28.04.2026 19:25:21
Missing Authorization vulnerability in AF themes WP Post Author.This issue affects WP Post Author: from n/a through 3.6.4.