Private Messages Project: >> Private Messages Security Vulnerabilities
Cross-Site Request Forgery (CSRF) vulnerability in Private Messages For WordPress plugin <= 2.1.10 at WordPress allows attackers to send messages.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-06-15
Authenticated (subscriber or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in Messages For WordPress <= 2.1.10 at WordPress.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-06-15