Frontend Admin by DynamiApps
Shabti Kaplan
Developer
3.29.3
Latest version
10,000
Installations
No date
Last updated
Vulnerability history
0 present
20 patched
17 Mitigation rules
- Authenticated (Administrator+) SQL Injection vulnerability<= 3.28.84 days ago
- Missing Authorization to Authenticated (Subscriber+) Account Takeover vulnerability<= 3.29.25 days ago
- Unauthenticated Privilege Escalation vulnerability<= 3.29.25 days ago
- Unauthenticated Privilege Escalation vulnerability<= 3.28.3615/05/2026
- Authenticated (Editor+) PHP Object Injection via 'post_content' of Admin Form Posts vulnerability<= 3.28.3130/03/2026
- Unauthenticated Privilege Escalation vulnerability<= 3.24.503/02/2026
- Unauthenticated Stored Cross-Site Scripting vulnerability<= 3.24.503/02/2026
- Unauthenticated Stored Cross-Site Scripting via 'update_field' vulnerability<= 3.28.2309/01/2026
- Unauthenticated Privilege Escalation to Administrator via Role Form Field vulnerability<= 3.28.2509/01/2026
- Missing Authorization to Unauthenticated Arbitrary Data Deletion via 'delete post' Form Element vulnerability<= 3.28.2509/01/2026
- Unauthenticated Arbitrary Options Update vulnerability<= 3.28.2003/12/2025
- SQL Injection vulnerability<= 3.28.312/08/2025
- Arbitrary File Download Vulnerability<= 3.28.726/06/2025
- Reflected Cross Site Scripting (XSS) vulnerability<= 3.25.1723/02/2025
- Unauthenticated SQL Injection vulnerability<= 3.25.120/12/2024
- Improper Missing Encryption Exception Handling to Form Manipulation vulnerability<= 3.19.422/04/2024
- Unauthenticated Arbitrary File Upload vulnerability<= 3.18.327/12/2023
- Reflected Cross Site Scripting (XSS) vulnerability<= 3.7.1119/07/2023
- Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability< 3.3.3328/02/2022
- Sensitive Information Disclosure vulnerability< 3.3.3328/02/2022