CVE-2025-58792
- EPSS 0.02%
- Published 05.09.2025 13:45:01
- Last modified 05.09.2025 17:47:10
Cross-Site Request Forgery (CSRF) vulnerability in WPKube Authors List allows Cross Site Request Forgery. This issue affects Authors List: from n/a through 2.0.6.1.
CVE-2024-13806
- EPSS 0.26%
- Published 01.03.2025 08:15:33
- Last modified 01.03.2025 08:15:33
The The Authors List plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.6. This is due to the software allowing users to execute an action that does not properly validate a value before runni...
CVE-2024-10952
- EPSS 1.91%
- Published 04.12.2024 03:15:04
- Last modified 04.12.2024 03:15:04
The The Authors List plugin for WordPress is vulnerable to arbitrary shortcode execution via update_authors_list_ajax AJAX action in all versions up to, and including, 2.0.4. This is due to the software allowing users to execute an action that does n...
CVE-2023-37981
- EPSS 0.08%
- Published 27.07.2023 14:15:09
- Last modified 21.11.2024 08:12:38
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPKube Authors List plugin <= 2.0.2 versions.