Wpfront Wpfront User Role Editor — known CVE vulnerabilities
Every CVE whose affected-product data names Wpfront Wpfront User Role Editor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24984 — CVSS 6.1 (medium): The WPFront User Role Editor WordPress plugin before 3.2.1.11184 does not sanitise and escape the changes-saved parameter before outputting…
CVE-2024-2931 — CVSS 4.3 (medium): The WPFront User Role Editor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including…