Product
yarpp yet another related posts plugin
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-43919
CVE-2023-6495
CVE-2022-45374
CVE-2024-0602
CVE-2023-0579
CVE-2023-2433
CVE-2022-4471
<= 5.30.10
Access Control vulnerability in YARPP allows . This issue affects YARPP: from n/a through 5.30.10.
< 5.30.10
The YARPP - Yet Another Related Posts Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings
< 5.30.5
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in YARPP allows PHP Local File Inclus
< 5.30.10
The YARPP - Yet Another Related Posts Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings
< 5.30.3
The YARPP WordPress plugin before 5.30.3 does not validate and escape some of its shortcode attributes before using them in SQL st
<= 5.30.3
The YARPP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'className' parameter in versions up to, and inclu
<= 5.30.1
The YARPP WordPress plugin before 5.30.3 does not validate and escape some of its shortcode attributes before outputting them back