Wpwhitesecurity Wp Activity Log — known CVE vulnerabilities
Every CVE whose affected-product data names Wpwhitesecurity Wp Activity Log, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-36716 — CVSS 7.3 (high): The WP Activity Log plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the setup_page function…
CVE-2023-2261 — CVSS 4.3 (medium): The WP Activity Log plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the handle_ajax_call…
CVE-2023-2284 — CVSS 4.3 (medium): The WP Activity Log Premium plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on…
CVE-2023-2285 — CVSS 4.3 (medium): The WP Activity Log Premium plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.0. This…
CVE-2023-2286 — CVSS 4.3 (medium): The WP Activity Log for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.0. This is due to…