cleantalk
Vulnerabilities and Security Researches

Featured Post Creative, 6539344634489ac52089a2617be01822e1c48370

CVE, Research URL

6539344634489ac52089a2617be01822e1c48370

Home page URL

Security reports for Featured Post Creative

Application

Featured Post Creative

Published on
Apr 13, 2023
Research Description
Featured Post Creative [featured-post-creative] < 1.2.8 WordPress Featured Post Creative Plugin <= 1.2.7 is vulnerable to Broken Access Control Update the WordPress Featured Post Creative plugin to the latest available version (at least 1.2.8). Cat discovered and reported this Broken Access Control vulnerability in WordPress Featured Post Creative Plugin. This vulnerability has been fixed in version 1.2.8.
Affected versions
max 1.2.8.
Status
vulnerable
Previous vulnerability researches
Featured Post Creative (CVE-2023-30488) , Jun 10, 2024
Featured Post Creative (6539344634489ac52089a2617be01822e1c48370) , Jun 07, 2024
Featured Post Creative (CVE-2025-66106) , Dec 11, 2025
New vulnerability
GitHub Gist Shortcode Plugin (CVE-2025-12667) , Dec 12, 2025
Cryptocurrency Payment Gateway for WooCommerce (CVE-2025-12392) , Dec 12, 2025
Wbcom Designs &#8211; Private Community for BuddyPress (CVE-2025-67582) , Dec 12, 2025
WP-Walla (CVE-2025-12589) , Dec 12, 2025
Master Addons for Elementor (CVE-2025-63055) , Dec 12, 2025