Vulnerabilities and security researches forwp-team-manager wp-team-manager
Direction: ascendingJun 07, 2024
Team Manager – WordPress Showcase Team Members # CVE-2022-29406
- CVE, Research URL
- Date
- Jun 15, 2022
- Research Description
- Multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in DynamicWebLab's WordPress Team Manager plugin <= 1.6.9 at WordPress.
- Affected versions
-
max 1.6.9.
- Status
-
vulnerable
Jul 14, 2024
Team Manager – WordPress Showcase Team Members # CVE-2024-38704
- CVE, Research URL
- Date
- Jul 12, 2024
- Research Description
- Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in DynamicWebLab WordPress Team Manager allows PHP Local File Inclusion.This issue affects WordPress Team Manager: from n/a through 2.1.12.
- Affected versions
-
max 2.1.13.
- Status
-
vulnerable
Apr 02, 2025
Team Manager – WordPress Showcase Team Members # CVE-2025-30868
- CVE, Research URL
- Date
- Mar 27, 2025
- Research Description
- Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in DynamicWebLab Team Manager allows PHP Local File Inclusion. This issue affects Team Manager: from n/a through 2.1.23.
- Affected versions
-
max 2.2.0.
- Status
-
vulnerable
Apr 25, 2026
Team Manager – WordPress Showcase Team Members # CVE-2025-58222
- CVE, Research URL
- Date
- Sep 23, 2025
- Research Description
- Missing Authorization vulnerability in Maidul Team Manager wp-team-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team Manager: from n/a through <= 2.5.1.
- Affected versions
-
max 2.3.16.
- Status
-
vulnerable