CVEs (2)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Private Messages Project 1Private Messages Jun 17, 2026 Jun 15, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Authenticated (subscriber or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in Messages For WordPress <= 2.1.10 at WordPress. |
1Private Messages Project 1Private Messages Jun 17, 2026 Jun 15, 2022 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Cross-Site Request Forgery (CSRF) vulnerability in Private Messages For WordPress plugin <= 2.1.10 at WordPress allows attackers to send messages. |