VYPR

Categorify

by Frenify

Source repositories

CVEs (11)

  • CVE-2025-59005MedSep 9, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in frenify Categorify categorify allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Categorify: from n/a through <= 1.0.7.5.

  • CVE-2024-0385MedMar 13, 2024
    risk 0.21cvss 4.3epss 0.01

    The Categorify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the categorifyAjaxAddCategory function in all versions up to, and including, 1.0.7.4. This makes it possible for authenticated attackers, with…

  • CVE-2024-1912MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.7.4. This is due to missing or incorrect nonce validation on the categorifyAjaxUpdateFolderPosition function. This makes it possible for unauthenticated…

  • CVE-2024-1910MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.7.4. This is due to missing or incorrect nonce validation on the categorifyAjaxClearCategory function. This makes it possible for unauthenticated attackers…

  • CVE-2024-1909MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.7.4. This is due to missing or incorrect nonce validation on the categorifyAjaxRenameCategory function. This makes it possible for unauthenticated attackers…

  • CVE-2024-1907MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.7.4. This is due to missing or incorrect nonce validation on the categorifyAjaxDeleteCategory function. This makes it possible for unauthenticated attackers…

  • CVE-2024-1906MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.7.4. This is due to missing or incorrect nonce validation on the categorifyAjaxAddCategory function. This makes it possible for unauthenticated attackers to…

  • CVE-2024-1653MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the categorifyAjaxUpdateFolderPosition in all versions up to, and including, 1.0.7.4. This makes it possible for authenticated attackers, with…

  • CVE-2024-1652MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the categorifyAjaxClearCategory function in all versions up to, and including, 1.0.7.4. This makes it possible for authenticated attackers, with…

  • CVE-2024-1650MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the categorifyAjaxRenameCategory function in all versions up to, and including, 1.0.7.4. This makes it possible for authenticated attackers, with…

  • CVE-2024-1649MedFeb 27, 2024
    risk 0.21cvss 4.3epss 0.00

    The Categorify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the categorifyAjaxDeleteCategory function in all versions up to, and including, 1.0.7.4. This makes it possible for authenticated attackers, with…