WP RSS Aggregator
RebelCode
Developer
5.0.11
Latest version
50,000
Installations
No date
Last updated
Vulnerability history
0 present
10 fixed
6 Mitigation rules
- Reflected Cross-Site Scripting via 'template' Parameter vulnerability<= 5.0.103 hours ago
- Authenticated (Contributor+) Stored Cross-Site Scripting via wp-rss-aggregator Shortcode vulnerability<= 5.0.10Jan 23, 2026
- WordPress RSS Aggregator - RSS Import, News Feeds, Feed to Post, and Autoblogging plugin <= 5.0.10 - Reflected Cross-Site Scripting via className vulnerability<= 5.0.10Jan 16, 2026
- Missing Authorization vulnerability<= 4.23.12Oct 22, 2024
- Missing Authorization to Authenticated (Subscriber+) Feed State Update vulnerability<= 4.23.11Jul 16, 2024
- Authenticated (Admin+) Server-Side Request Forgery via RSS Feed Source vulnerability<= 4.23.5Feb 7, 2024
- Authenticated (Admin+) Stored Cross-Site Scripting via RSS Feed Source vulnerability<= 4.23.4Jan 26, 2024
- Reflected Cross-Site Scripting (XSS) vulnerability<= 4.19.3Jan 26, 2022
- Stored Cross-Site Scripting (XSS) vulnerability<= 4.19.2Nov 29, 2021
- Stored Cross-Site Scripting (XSS) vulnerability<= 4.19.1Nov 1, 2021