Vulnerabilities and security researches forwp-meta-data-filter-and-taxonomy-filter wp-meta-data-filter-and-taxonomy-filter

Direction: descending

Aug 17, 2025

MDTF – Meta Data and Taxonomies Filter # CVE-2025-54707

CVE, Research URL: CVE-2025-54707
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Aug 14, 2025
Research Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 MDTF allows SQL Injection. This issue affects MDTF: from n/a through 1.3.3.7.
Affected versions: Min -, max -.
Status: vulnerable

Jan 24, 2025

MDTF – Meta Data and Taxonomies Filter # CVE-2024-13340

CVE, Research URL: CVE-2024-13340
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Jan 23, 2025
Research Description: The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mdf_results_by_ajax' shortcode in all versions up to, and including, 1.3.3.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions: Min -, max -.
Status: vulnerable

Jan 08, 2025

MDTF – Meta Data and Taxonomies Filter # CVE-2024-12030

CVE, Research URL: CVE-2024-12030
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Jan 08, 2025
Research Description: The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to SQL Injection via the 'key' attribute of the 'mdf_value' shortcode in all versions up to, and including, 1.3.3.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Contributor-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Affected versions: Min -, max -.
Status: vulnerable

Oct 28, 2024

MDTF – Meta Data and Taxonomies Filter # CVE-2024-50451

CVE, Research URL: CVE-2024-50451
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Oct 28, 2024
Research Description: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Stored XSS.This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.3.4.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2024-50450

CVE, Research URL: CVE-2024-50450
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Oct 28, 2024
Research Description: Improper Control of Generation of Code ('Code Injection') vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Code Injection.This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.3.4.
Affected versions: Min -, max -.
Status: vulnerable

Sep 25, 2024

MDTF – Meta Data and Taxonomies Filter # CVE-2024-8624

CVE, Research URL: CVE-2024-8624
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Sep 24, 2024
Research Description: The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to SQL Injection via the 'meta_key' attribute of the 'mdf_select_title' shortcode in all versions up to, and including, 1.3.3.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Contributor-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2024-8623

CVE, Research URL: CVE-2024-8623
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Sep 24, 2024
Research Description: The The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.3.3.3. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
Affected versions: Min -, max -.
Status: vulnerable

Jun 06, 2024

MDTF – Meta Data and Taxonomies Filter # CVE-2024-29906

CVE, Research URL: CVE-2024-29906
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Mar 27, 2024
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Stored XSS.This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.2.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2024-29763

CVE, Research URL: CVE-2024-29763
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Mar 27, 2024
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Reflected XSS.This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.3.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2024-34434

CVE, Research URL: CVE-2024-34434
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: May 17, 2024
Research Description: Incorrect Authorization vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Code Inclusion, Functionality Misuse.This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.3.2.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2021-20781

CVE, Research URL: CVE-2021-20781
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Jul 14, 2021
Research Description: Cross-site request forgery (CSRF) vulnerability in WordPress Meta Data Filter & Taxonomies Filter versions prior to v.1.2.8 and versions prior to v.2.2.8 allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2023-28664

CVE, Research URL: CVE-2023-28664
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Mar 23, 2023
Research Description: The Meta Data and Taxonomies Filter WordPress plugin, in versions < 1.3.1, is affected by a reflected cross-site scripting vulnerability in the 'tax_name' parameter of the mdf_get_tax_options_in_widget action, which can only be triggered by an authenticated user.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2024-29932

CVE, Research URL: CVE-2024-29932
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Mar 27, 2024
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Stored XSS.This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.2.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2024-30457

CVE, Research URL: CVE-2024-30457
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Mar 29, 2024
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF).This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.3.1.
Affected versions: Min -, max -.
Status: vulnerable

MDTF – Meta Data and Taxonomies Filter # CVE-2024-32818

CVE, Research URL: CVE-2024-32818
Home page URL: Security reports for MDTF – Meta Data and Taxonomies Filter
Application: MDTF – Meta Data and Taxonomies Filter
Date: Jun 09, 2024
Research Description: Missing Authorization vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF).This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.3.
Affected versions: Min -, max -.
Status: vulnerable

Vulnerabilities and security researches forwp-meta-data-filter-and-taxonomy-filter wp-meta-data-filter-and-taxonomy-filter

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2025-54707

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-13340

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-12030

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-50451

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-50450

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-8624

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-8623

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-29906

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-29763

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-34434

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2021-20781

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2023-28664

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-29932

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-30457

MDTF &#8211; Meta Data and Taxonomies Filter # CVE-2024-32818

MDTF – Meta Data and Taxonomies Filter # CVE-2025-54707

MDTF – Meta Data and Taxonomies Filter # CVE-2024-13340

MDTF – Meta Data and Taxonomies Filter # CVE-2024-12030

MDTF – Meta Data and Taxonomies Filter # CVE-2024-50451

MDTF – Meta Data and Taxonomies Filter # CVE-2024-50450

MDTF – Meta Data and Taxonomies Filter # CVE-2024-8624

MDTF – Meta Data and Taxonomies Filter # CVE-2024-8623

MDTF – Meta Data and Taxonomies Filter # CVE-2024-29906

MDTF – Meta Data and Taxonomies Filter # CVE-2024-29763

MDTF – Meta Data and Taxonomies Filter # CVE-2024-34434

MDTF – Meta Data and Taxonomies Filter # CVE-2021-20781

MDTF – Meta Data and Taxonomies Filter # CVE-2023-28664

MDTF – Meta Data and Taxonomies Filter # CVE-2024-29932

MDTF – Meta Data and Taxonomies Filter # CVE-2024-30457

MDTF – Meta Data and Taxonomies Filter # CVE-2024-32818