| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-2783 | GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress <= 6.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | rubengc | GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress | Medium | 6.4 | 2024-04-09 18:58:56 | Deep Dive |
| CVE-2024-1799 | GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress <= 6.8.6 - Authenticated (Contributor+) SQL Injection via Shortcode | rubengc | GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress | High | 8.8 | 2024-03-20 02:35:42 | Deep Dive |
| CVE-2024-24886 | WordPress Product Labels For Woocommerce Plugin <= 1.5.3 is vulnerable to Cross Site Scripting (XSS) | Acowebs | Product Labels For Woocommerce (Sale Badges) | Medium | 5.9 | 2024-02-08 10:46:28 | Deep Dive |
| CVE-2023-50827 | WordPress Accredible Certificates & Open Badges Plugin <= 1.4.8 is vulnerable to Cross Site Scripting (XSS) | Accredible | Accredible Certificates & Open Badges | Medium | 5.9 | 2023-12-21 14:48:28 | Deep Dive |
| CVE-2023-25715 | WordPress GamiPress Plugin <= 2.5.6 is vulnerable to Broken Access Control | GamiPress | GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress | Medium | 5.4 | 2023-12-19 15:40:16 | Deep Dive |
| CVE-2023-47853 | WordPress myCred Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS) | myCred | myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin | Medium | 6.5 | 2023-11-30 16:49:12 | Deep Dive |
| CVE-2021-4337 | Multiple XforWooCommerce Add-On Plugins (Various Versions) - Missing Authorization | XforWooCommerce | Package Quantity Discount | High | 8.8 | 2023-06-07 12:43:07 | Deep Dive |
| CVE-2021-25015 | myCred < 2.4 - Reflected Cross-Site Scripting | Unknown | myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin | 中危 | - | 2022-01-24 08:01:09 | Deep Dive |
| CVE-2021-24755 | myCred < 2.3 - Subscriber+ SQL Injection | Unknown | myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin | 高危 | - | 2021-11-29 08:25:35 | Deep Dive |
| CVE-2017-20008 | myCRED < 1.7.8 - Reflected Cross-Site Scripting | Unknown | myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin | 中危 | - | 2021-11-29 08:25:28 | Deep Dive |
| CVE-2017-6102 | WordPress rockhoist-badges插件跨站脚本漏洞 | blairjordan | wordpress plugin rockhoist-badges | 中危 | - | 2017-03-02 22:00:00 | Deep Dive |