cleantalk
Vulnerabilities and Security Researches

WP-Appbox, CVE-2021-36910

CVE, Research URL

CVE-2021-36910

Home page URL

Security reports for WP-Appbox

Application

WP-Appbox

Published on
Apr 12, 2022
Research Description
Authenticated (admin user role) Stored Cross-Site Scripting (XSS) in WP-Appbox (WordPress plugin) <= 4.3.20.
Affected versions
max 4.4.0.
Status
vulnerable
Previous vulnerability researches
WP-Appbox (CVE-2025-1489) , Feb 24, 2025
WP-Appbox (b78e4a3b-e432-4968-8b83-125f3bac15cd) , Jun 16, 2026
WP-Appbox (38323495c61fe870f9687d2fb34e8fdaa47f2cea) , Jun 16, 2026
WP-Appbox (cec60394318af09fd303e279df20a93f055a959c) , Jun 16, 2026
WP-Appbox (CVE-2024-12710) , Dec 25, 2024
New vulnerability
AI Engine (7f5449dc8d09819a2b897628d4142dd44c0ac3e9) , Jun 16, 2026
AI Engine (21a6533cf7116e730acb86ec7750d660dce20694) , Jun 16, 2026
Wbcom Designs &#8211; BuddyPress Activity Social Share (f5d05900-a3aa-4bf3-9647-b47b62fa7358) , Jun 16, 2026
Wbcom Designs &#8211; BuddyPress Activity Social Share (38941ffe47ab697bbd9bd96f16432044f1f980d9) , Jun 16, 2026
WordPress Affiliates Plugin — SliceWP Affiliates (9d9b5ca8-72e2-409a-ac6d-543f6f3e7920) , Jun 16, 2026