Dev4press Gd Bbpress Attachments — known CVE vulnerabilities
Every CVE whose affected-product data names Dev4press Gd Bbpress Attachments, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-45816 — CVSS 4.8 (medium): Auth. Stored Cross-Site Scripting (XSS) vulnerability in GD bbPress Attachments plugin <= 4.3.1 on WordPress.
CVE-2015-5481 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in forms/panels.php in the GD bbPress Attachments plugin before 2.3 for WordPress allows remote…
CVE-2015-5482 — CVSS 4.0 (medium): Directory traversal vulnerability in the GD bbPress Attachments plugin before 2.3 for WordPress allows remote administrators to include and…