Vulnerabilities and security researches foradminimize adminimize

Jun 07, 2024

CVE, Research URL: CVE-2011-4926
Home page URL: Security reports for Adminimize
Application: Adminimize
Date: Aug 29, 2012
Research Description: Cross-site scripting (XSS) vulnerability in adminimize/adminimize_page.php in the Adminimize plugin before 1.7.22 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter.
Affected versions: max 1.7.22.
Status: vulnerable

CVE, Research URL: CVE-2011-5128
Home page URL: Security reports for Adminimize
Application: Adminimize
Date: Aug 29, 2012
Research Description: Multiple cross-site scripting (XSS) vulnerabilities in the Adminimize plugin before 1.7.22 for WordPress allow remote attackers to inject arbitrary web script or HTML via the page parameter to (1) inc-options/deinstall_options.php, (2) inc-options/theme_options.php, or (3) inc-options/im_export_options.php, or the (4) post or (5) post_ID parameters to adminimize.php, different vectors than CVE-2011-4926.
Affected versions: max 1.7.22.
Status: vulnerable

May 29, 2026

CVE, Research URL: CVE-2026-49045
Home page URL: Security reports for Adminimize
Application: Adminimize
Date: May 27, 2026
Research Description: Missing Authorization vulnerability in WP Media Adminimize allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Adminimize: from n/a through 1.11.11.
Affected versions: max 1.11.11.
Status: vulnerable