cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forwp-club-manager wp-club-manager

Direction: descending
Jun 06, 2024

WP Club Manager – WordPress Sports Club Plugin # CVE-2024-1177

CVE, Research URL

CVE-2024-1177

Home page URL

Security reports for WP Club Manager – WordPress Sports Club Plugin

Application

WP Club Manager – WordPress Sports Club Plugin

Date
Feb 06, 2024
Research Description
The WP Club Manager – WordPress Sports Club Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the settings_save() function in all versions up to, and including, 2.2.10. This makes it possible for unauthenticated attackers to update the permalink structure for the clubs
Affected versions
max 2.2.11.
Status
vulnerable

WP Club Manager – WordPress Sports Club Plugin # CVE-2024-32566

CVE, Research URL

CVE-2024-32566

Home page URL

Security reports for WP Club Manager – WordPress Sports Club Plugin

Application

WP Club Manager – WordPress Sports Club Plugin

Date
Apr 18, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Club Manager allows Stored XSS.This issue affects WP Club Manager: from n/a through 2.2.11.
Affected versions
max 2.2.12.
Status
vulnerable

WP Club Manager – WordPress Sports Club Plugin # CVE-2024-32719

CVE, Research URL

CVE-2024-32719

Home page URL

Security reports for WP Club Manager – WordPress Sports Club Plugin

Application

WP Club Manager – WordPress Sports Club Plugin

Date
May 14, 2024
Research Description
Missing Authorization vulnerability in WP Club Manager.This issue affects WP Club Manager: from n/a through 2.2.11.
Affected versions
max 2.2.12.
Status
vulnerable