Administrative Shortcodes

Vulnerabilities 2Slug administrative-shortcodesLatest version 0.3.4WordPress.org →Closed
High 7.5 Unfixed Closed
2026-01-24≤ 0.3.4

Administrative Shortcodes <= 0.3.4 - Authenticated (Contributor+) Local File Inclusion via 'slug' Shortcode Attribute

EUVDWordfenceCVE
Medium 6.4 Unfixed Closed
2026-01-24≤ 0.3.4

Administrative Shortcodes <= 0.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'login' and 'logout' Shortcode Attributes

EUVDWordfenceCVE