Wordpress Mycred Vulnerabilities

Stored Cross-Site Scripting Vulnerability in myCred Plugin for WordPress and WooCommerce

CVE-2024-11201

WordpressMycred – Exclusive Pla...👾🟡6.4MEDIUM

Stored Cross-Site Scripting Vulnerability in MyCred

CVE-2024-10187

WordpressMycred – Loyalty Point...5.4MEDIUM

Stored XSS Vulnerability in myCred Elementor

CVE-2024-49702

WordPressMycred Elementor5.4MEDIUM

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes

CVE-2022-4974

WordpressYasr – Yet Another Sta...6.3MEDIUM

Unauthorized Data Modification Vulnerability in myCred Plugin

CVE-2024-8658

WordpressMycred5.3MEDIUM

myCred: Stored XSS Vulnerability Affects All Versions

CVE-2024-43353

WordPressMycred6.5MEDIUM

myCred Stored XSS Vulnerability

CVE-2024-32711

WordPressMycred6.5MEDIUM

WordPress myCred Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)

CVE-2023-47853

WordPressMycred – Points, Rewar...6.5MEDIUM

WordPress myCred Plugin <= 2.5 is vulnerable to Cross Site Request Forgery (CSRF)

CVE-2023-35096

WordPressMycred5.4MEDIUM

myCred < 2.4.4 - Subscriber+ Import/Export to Email Address Disclosure

CVE-2022-1092

WordpressMycred4.3MEDIUM

myCred < 2.4.4 - Subscriber+ Arbitrary Post Creation

CVE-2022-0363

WordpressMycred4.3MEDIUM

Mycred < 2.4.4.1 - Subscriber+ User E-mail Addresses Disclosure

CVE-2022-0287

WordpressMycred4.3MEDIUM

myCred < 2.4 - Reflected Cross-Site Scripting

CVE-2021-25015

WordpressMycred – Points, Rewar...6.1MEDIUM

myCred < 2.3 - Subscriber+ SQL Injection

CVE-2021-24755

WordpressMycred – Points, Rewar...8.8HIGH

myCRED < 1.7.8 - Reflected Cross-Site Scripting

CVE-2017-20008

WordpressMycred – Points, Rewar...6.1MEDIUM

WordPress Mycred Vulnerabilities

Vulnerability Published:

Sort By:

6 December 2024

Stored Cross-Site Scripting Vulnerability in myCred Plugin for WordPress and WooCommerce

8 November 2024

Stored Cross-Site Scripting Vulnerability in MyCred

24 October 2024

Stored XSS Vulnerability in myCred Elementor

16 October 2024

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes

25 September 2024

Unauthorized Data Modification Vulnerability in myCred Plugin

18 August 2024

myCred: Stored XSS Vulnerability Affects All Versions

24 April 2024

myCred Stored XSS Vulnerability

30 November 2023

WordPress myCred Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)

17 July 2023

WordPress myCred Plugin <= 2.5 is vulnerable to Cross Site Request Forgery (CSRF)

25 April 2022

myCred < 2.4.4 - Subscriber+ Import/Export to Email Address Disclosure

myCred < 2.4.4 - Subscriber+ Arbitrary Post Creation

Mycred < 2.4.4.1 - Subscriber+ User E-mail Addresses Disclosure

24 January 2022

myCred < 2.4 - Reflected Cross-Site Scripting

29 November 2021

myCred < 2.3 - Subscriber+ SQL Injection

myCRED < 1.7.8 - Reflected Cross-Site Scripting