WPBookit
Iqonic Design
Developer
1.0.8
Latest version
10
Installations
No date
Last updated
Vulnerability history
1 present
9 fixed
8 Mitigation rules
- Unauthenticated Stored Cross-Site Scripting vulnerability<= 1.0.6Nov 24, 2025
- Unauthenticated Arbitrary File Upload via image_upload_handle Function vulnerability<= 1.0.6Jul 23, 2025
- Authenticated (Subscriber+) Arbitrary File Upload vulnerability<= 1.0.4Jul 11, 2025
- Unauthenticated Arbitrary File Upload vulnerability<= 1.0.4Jul 11, 2025
- Insecure Direct Object Reference to Unauthenticated Privilege Escalation via Account Takeover vulnerability<= 1.0.2May 8, 2025
- Broken Access Control vulnerability<= 1.0.7Apr 4, 2025
- Cross Site Request Forgery (CSRF) Vulnerability<= 1.0.1Mar 9, 2025
- Unauthenticated Arbitrary File Upload vulnerability<= 1.6.9Jan 27, 2025
- Unauthenticated Arbitrary User Password Change vulnerability<= 1.6.4Jan 9, 2025
- SQL Injection vulnerability<= 1.6.0Dec 11, 2024