VYPR

Bulk Creator

by WordPress

CVEs (2)

  • CVE-2022-1611HigMay 30, 2022
    risk 0.57cvss 8.8epss 0.01

    The Bulk Page Creator WordPress plugin before 1.1.4 does not protect its page creation functionalities with nonce checks, which makes them vulnerable to CSRF.

  • CVE-2022-0647MedMar 28, 2022
    risk 0.40cvss 6.1epss 0.01

    The Bulk Creator WordPress plugin through 1.0.1 does not sanitize and escape the post_type parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.