VYPR

Miniorange Discord Integration

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-47672HigMay 23, 2025
    risk 0.53cvss 8.1epss 0.01

    Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in miniOrange miniOrange Discord Integration miniorange-discord-integration allows PHP Local File Inclusion.This issue affects miniOrange Discord Integration:…

  • CVE-2022-3082MedOct 17, 2022
    risk 0.42cvss 6.5epss 0.00

    The miniOrange Discord Integration WordPress plugin before 2.1.6 does not have authorisation and CSRF in some of its AJAX actions, allowing any logged in users, such as subscriber to call them, and disable the app for example