← Back

Dontdream

dontdream

2 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Menubar
menubar

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
1Dontdream
1Bp Profile Search
Jun 17, 2026
Jan 31, 2024
N/A· v4
6.1 MEDIUM· v3
N/A· v2
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Andrea Tarantini BP Profile Search allows Reflected XSS.This issue affects BP Profile Search: from n/a through 5.5.
1Dontdream
1Menubar
Jun 17, 2026
Jul 11, 2023
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Cross-Site Request Forgery (CSRF) vulnerability in Andrea Tarantini Menubar plugin <= 5.8.2 versions.