VYPR

Glossary By Codeat

by WordPress

CVEs (2)

  • CVE-2023-24378MedApr 6, 2023
    risk 0.42cvss 6.5epss 0.00

    Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Codeat Glossary plugin <= 2.1.27 versions.

  • CVE-2024-6570MedJul 16, 2024
    risk 0.34cvss 5.3epss 0.00

    The Glossary plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.2.26. This is due the plugin utilizing wpdesk and not preventing direct access to the test files along with display_errors being enabled. This makes it possible for…