WordPress Mycred Vulnerabilities
Wordpress Mycred vulnerabilities.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Cross-Site Scripting Vulnerability in myCred Plugin by Saad Iqbal
CVE-2026-27440WordPressMycred6.5MEDIUMStored Cross-Site Scripting in myCred Plugin for WordPress
CVE-2026-0550WordPressMycred – Points Manage...6.4MEDIUMMissing Authorization Flaw in myCred Plugin by Saad Iqbal
CVE-2026-24951WordPressMycred4.3MEDIUMMissing Authorization Vulnerability in myCred Plugin for WordPress
CVE-2025-12361WordPressMycred – Points Manage...4.3MEDIUMMissing Authorization Vulnerability in myCred Points Management System for WordPress
CVE-2025-12362WordPressMycred – Points Manage...5.3MEDIUMCross-site Scripting Vulnerability in myCred Plugin by Saad Iqbal
CVE-2025-54668WordPressMycred6.5MEDIUMRace Condition Vulnerability in myCred Plugin by Saad Iqbal
CVE-2025-54667WordPressMycred5.3MEDIUMAccess Control Flaw in WPExperts.io myCred Plugin
CVE-2025-49857WordPressMycred4.3MEDIUMMissing Authorization in WPExperts.io myCred Plugin
CVE-2025-49872WordPressMycred5.3MEDIUMStored Cross-Site Scripting Vulnerability in myCred Plugin for WordPress and WooCommerce
CVE-2024-11201WordPressMycred – Exclusive Pla...👾🟡6.4MEDIUMStored Cross-Site Scripting Vulnerability in MyCred
CVE-2024-10187WordPressMycred – Loyalty Point...6.4MEDIUMStored XSS Vulnerability in myCred Elementor
CVE-2024-49702WordPressMycred Elementor5.4MEDIUMFreemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes
CVE-2022-4974WordPressYasr – Yet Another Sta...6.3MEDIUMUnauthorized Data Modification Vulnerability in myCred Plugin
CVE-2024-8658WordPressMycred – Loyalty Point...5.3MEDIUMmyCred: Stored XSS Vulnerability Affects All Versions
CVE-2024-43353WordPressMycred6.5MEDIUMmyCred Stored XSS Vulnerability
CVE-2024-32711WordPressMycred6.5MEDIUMWordPress myCred Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-47853WordPressMycred – Points, Rewar...6.5MEDIUMWordPress myCred Plugin <= 2.5 is vulnerable to Cross Site Request Forgery (CSRF)
CVE-2023-35096WordPressMycred5.4MEDIUMmyCred < 2.4.4 - Subscriber+ Import/Export to Email Address Disclosure
CVE-2022-1092WordpressMycred👾🟡4.3MEDIUMmyCred < 2.4.4 - Subscriber+ Arbitrary Post Creation
CVE-2022-0363WordpressMycred👾🟡4.3MEDIUMMycred < 2.4.4.1 - Subscriber+ User E-mail Addresses Disclosure
CVE-2022-0287WordpressMycred👾🟡4.3MEDIUMmyCred < 2.4 - Reflected Cross-Site Scripting
CVE-2021-25015WordpressMycred – Points, Rewar...6.1MEDIUMmyCred < 2.3 - Subscriber+ SQL Injection
CVE-2021-24755WordpressMycred – Points, Rewar...8.8HIGHmyCRED < 1.7.8 - Reflected Cross-Site Scripting
CVE-2017-20008WordpressMycred – Points, Rewar...6.1MEDIUM