VYPR

Enable Accessibility

by WordPress

Source repositories

CVEs (2)

  • CVE-2024-9208MedJan 7, 2025
    risk 0.40cvss 6.1epss 0.00

    The Enable Accessibility plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.4.1. This makes it possible for unauthenticated…

  • CVE-2023-30484MedMay 25, 2023
    risk 0.28cvss 4.3epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in uPress Enable Accessibility plugin <= 1.4 versions.