VYPR

Bulk Posts Editing For WordPress

by WordPress

CVEs (2)

  • CVE-2024-4204MedMay 16, 2024
    risk 0.28cvss 4.3epss 0.00

    The Bulk Posts Editing For WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2.3. This is due to missing or incorrect nonce validation on the plugin's AJAX actions.. This makes it possible for unauthenticated…

  • CVE-2024-4199MedMay 15, 2024
    risk 0.28cvss 4.3epss 0.00

    The Bulk Posts Editing For WordPress plugin for WordPress is vulnerable to unauthorized access of functionality due to a missing capability check on the plugin's AJAX actions in all versions up to, and including, 4.2.3. This makes it possible for authenticated attackers, with…