HUSKY
RealMag777
Developer
1.3.8.1
Latest version
90,000
Installations
No date
Last updated
Vulnerability history
0 present
22 patched
10 Mitigation rules
- Authenticated (Subscriber+) Insecure Direct Object Reference via 'woof_add_subscr' vulnerability<= 1.3.7.318/12/2025
- Authenticated (Subscriber+) Insecure Direct Object Reference via 'woof_add_query/woof_remove_query' vulnerability<= 1.3.7.203/12/2025
- Unauthenticated SQL Injection via `phrase` Parameter vulnerability<= 1.3.7.128/10/2025
- Local File Inclusion Vulnerability<= 1.3.719/06/2025
- Local File Inclusion vulnerability<= 1.3.6.414/03/2025
- Unauthenticated Local File Inclusion vulnerability<= 1.3.6.510/03/2025
- Reflected Cross-Site Scripting via really_curr_tax Parameter vulnerability<= 1.3.6.319/11/2024
- Insecure Direct Object Reference to Unsubscribe vulnerability<= 1.3.6.124/09/2024
- Privilege Escalation vulnerability<= 1.3.6.107/08/2024
- Unauthenticated Time-Based SQL Injection vulnerability<= 1.3.616/07/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability<= 1.3.5.329/05/2024
- Remote Code Execution (RCE) vulnerability<= 1.3.5.217/04/2024
- Authenticated (Admin+) Local File Inclusion vulnerability<= 1.3.5.201/04/2024
- Cross Site Request Forgery (CSRF) vulnerability<= 1.3.5.128/03/2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability<= 1.3.5.114/03/2024
- Authenticated (Contributor+) SQL Injection vulnerability<= 1.3.5.214/03/2024
- Cross Site Request Forgery (CSRF) vulnerability<= 1.3.4.322/12/2023
- SQL Injection vulnerability<= 1.3.4.227/11/2023
- Broken Access Control vulnerability<= 1.3.4.223/11/2023
- Admin+ PHP Object Injection vulnerability< 1.3.211/01/2023
- Arbitrary File Upload Vulnerability<= 1.1.4.208/07/2017
- Authenticated Persistent Cross-Site Scripting (XSS) Vulnerability<= 1.1.408/07/2017