BadgeOS
N/A
Developer
N/A
Latest version
N/A
Installations
N/A
Last updated
Vulnerability history
5 present
2 patched
2 Mitigation rules
- Broken Access Control vulnerability<= 3.7.1.607/11/2023
- Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary Post Title Overwrite vulnerability<= 3.7.1.606/07/2023
- Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary Post Deletion vulnerability<= 3.7.1.606/07/2023
- Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability<= 3.7.1.606/07/2023
- Multiple Cross-Site Request Forgery (CSRF) vulnerability<= 3.7.1.618/04/2023
- Authenticated SQL Injection (SQLi) vulnerability<= 3.7.1.223/08/2022
- Unauthenticated SQL Injection (SQLi) vulnerability<= 3.7.013/04/2022