VYPR

Gtbabel

by WordPress

CVEs (1)

  • CVE-2024-11638HigMar 10, 2025
    risk 0.57cvss 8.8epss 0.01

    The Gtbabel WordPress plugin before 6.6.9 does not ensure that the URL to perform code analysis upon belongs to the blog which could allow unauthenticated attackers to retrieve a logged in user (such as admin) cookies by making them open a crafted URL as the request made to…