WPSchoolPress
Ronik@UnlimitedWP
Developer
2.2.36
Latest version
2,000
Installations
No date
Last updated
Vulnerability history
0 present
13 patched
5 Mitigation rules
- Authenticated (Administrator+) SQL Injection vulnerability<= 2.2.2313/11/2025
- Missing Authorization to Arbitrary User Deletion vulnerability<= 2.2.1614/03/2025
- Authenticated (Parent+) SQL Injection vulnerability<= 2.2.1614/03/2025
- SQL Injection vulnerability<= 2.2.1714/03/2025
- Missing Authorization to Privilege Escalation via Account Takeover vulnerability<= 2.2.1614/03/2025
- Authenticated (Student/Parent+) SQL Injection vulnerability<= 2.2.1407/01/2025
- Insecure Direct Object Reference to Authenticated (Teacher+) Account Takeover/Privilege Escalation vulnerability<= 2.2.1025/10/2024
- Teacher+ SQLi vulnerability< 2.2.517/10/2023
- Cross-Site Request Forgery vulnerability< 2.2.519/09/2023
- Broken Access Control vulnerability<= 2.2.711/07/2023
- Multiple Stored Cross-Site Scripting (XSS) vulnerabilities<= 2.1.1611/10/2021
- Multiple Authenticated SQL Injections (SQLi) vulnerabilities<= 2.1.911/10/2021
- Reflected Cross-Site Scripting (XSS) vulnerability<= 2.1.911/10/2021