BP WC Vendors

Vulnerabilities 3Slug bp-wc-vendorsLatest version 1.1.6Plugin page →

Minimum safe version

No explicit fix version available

Latest available1.1.6 ⚠ 3 vulnerabilities have no fix
N/A Unfixed
2023-07-18≤ 1.1.6

WordPress BP WC Vendors Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

PatchstackWPScanCVE
N/A Unfixed Closed
2022-02-28≤ 1.1.6

WordPress BP WC Vendors plugin <= 1.1.6 - Sensitive Information Disclosure vulnerability

Patchstack
N/A Unfixed Closed
2022-02-28≤ 1.1.6

WordPress BP WC Vendors plugin <= 1.1.6 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack