← Back

Limit Bio

limit_bio

Vendor: Rivercitygraphix • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-1436
1Rivercitygraphix
1Limit Bio
Oct 6, 2025
Mar 13, 2025
N/A· v4
7.1 HIGH· v3
N/A· v2
The Limit Bio WordPress plugin through 1.0 does not have CSRF check when updating its settings, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads...Show more
The Limit Bio WordPress plugin through 1.0 does not have CSRF check when updating its settings, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.Show less
CVE-2024-13884
1Rivercitygraphix
1Limit Bio
Apr 29, 2025
Mar 13, 2025
N/A· v4
7.1 HIGH· v3
N/A· v2
The Limit Bio WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such...Show more
The Limit Bio WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as adminShow less