cleantalk
Vulnerabilities and Security Researches

HM Multiple Roles, 661d3ede59a4c35b13b428b41eac91ad993f33cf

CVE, Research URL

661d3ede59a4c35b13b428b41eac91ad993f33cf

Home page URL

Security reports for HM Multiple Roles

Application

HM Multiple Roles

Published on
Feb 28, 2022
Research Description
HM Multiple Roles [hm-multiple-roles] < 1.6 WordPress HM Multiple Roles plugin < 1.6 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress HM Multiple Roles plugin (versions < 1.6).
Affected versions
max 1.6.
Status
vulnerable
Previous vulnerability researches
Multiple Roles per User (CVE-2025-11620) , Dec 11, 2025
HM Multiple Roles (CVE-2022-4974) , Nov 15, 2024
HM Multiple Roles (e0ced8390daf806f54b9f4a1542719af14d54b4a) , Jun 16, 2026
HM Multiple Roles (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
HM Multiple Roles (661d3ede59a4c35b13b428b41eac91ad993f33cf) , Jun 16, 2026
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026