cleantalk
Vulnerabilities and Security Researches

Staff Directory Plugin: Company Directory, e6fc14b5043eb6df65d21ad810280f0b2b091cfd

CVE, Research URL

e6fc14b5043eb6df65d21ad810280f0b2b091cfd

Home page URL

Security reports for Staff Directory Plugin: Company Directory

Application

Staff Directory Plugin: Company Directory

Published on
Jun 21, 2021
Research Description
Staff Directory Plugin: Company Directory [staff-directory-pro] < 4.0 (closed) WordPress Staff Directory Plugin: Company Directory <= 3.6 - Cross-Site Request Forgery (CSRF) vulnerability Cross-Site Request Forgery (CSRF) vulnerability discovered by Jerome Bruandet (NinTechNet) in WordPress Staff Directory Plugin: Company Directory (versions <= 3.6).
Affected versions
max 4.0.
Status
vulnerable
Previous vulnerability researches
Staff Directory Plugin: Company Directory (CVE-2021-4397) , Jun 07, 2024
Staff Directory Plugin: Company Directory (e6fc14b5043eb6df65d21ad810280f0b2b091cfd) , Jun 07, 2024
Staff Directory Plugin: Company Directory (CVE-2021-4342) , Jun 07, 2024
Staff Directory Plugin: Company Directory (CVE-2025-25165) , Feb 16, 2025
Staff Directory Plugin: Company Directory (CVE-2024-13839) , Mar 06, 2025
New vulnerability
Security & Malware scan by CleanTalk , Apr 03, 2026
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026