Bookpress

bookpress

Vendor: Blackandwhitedigital • 2 CVEs

CVEs (2)

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

1Blackandwhitedigital

1Bookpress

Apr 23, 2026

Feb 7, 2025

N/A· v4

6.1 MEDIUM· v3

N/A· v2

Cross-Site Request Forgery (CSRF) vulnerability in Black and White BookPress – For Book Authors book-press allows Cross-Site Scripting (XSS).This issue affects BookPress – For Book Authors: from n/a through <= 1.2.7.

1Blackandwhitedigital

1Bookpress

Apr 23, 2026

Feb 7, 2025

N/A· v4

9.8 CRITICAL· v3

N/A· v2

Missing Authorization vulnerability in Black and White BookPress – For Book Authors book-press allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BookPress – For Book Authors: from...Show more

Missing Authorization vulnerability in Black and White BookPress – For Book Authors book-press allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BookPress – For Book Authors: from n/a through <= 1.2.7.Show less