← Back

Post Timeline

post_timeline

Vendor: Agilelogix • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-13571
1Agilelogix
1Post Timeline
Jun 17, 2026
Feb 26, 2025
N/A· v4
7.1 HIGH· v3
N/A· v2
The Post Timeline WordPress plugin before 2.3.10 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege user...Show more
The Post Timeline WordPress plugin before 2.3.10 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.Show less
CVE-2023-4284
1Agilelogix
1Post Timeline
Jun 17, 2026
Sep 4, 2023
N/A· v4
6.1 MEDIUM· v3
N/A· v2
The Post Timeline WordPress plugin before 2.2.6 does not sanitise and escape an invalid nonce before outputting it back in an AJAX response, leading to a Reflected Cross-Site Scripting which could be used against high pr...Show more
The Post Timeline WordPress plugin before 2.2.6 does not sanitise and escape an invalid nonce before outputting it back in an AJAX response, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as adminShow less