Wpexperts: >> Mycred >> 2.4.5.2 Security Vulnerabilities
Missing Authorization vulnerability in myCred.This issue affects myCred: from n/a through 2.7.2.
CVSS Score
5.3
EPSS Score
0.002
Published
2024-08-26
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in myCred myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin allows Stored XSS.This issue affects myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin: from n/a through 2.6.1.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-11-30
Cross-Site Request Forgery (CSRF) vulnerability in myCred plugin <= 2.5 versions.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-07-17