Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress

Vulnerabilities 4Slug campus-directoryLatest version 1.9.3WordPress.org →

Minimum safe version

1.9.2

Update to 1.9.2 or later to address 4 fixable vulnerabilities

Latest available1.9.3
Medium 6.4
2025-08-05< 1.9.2

Campus Directory <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter

EUVDWordfenceCVE
Medium 6.4
2025-06-04< 1.9.1

WordPress Campus Directory Plugin <= 1.9.0 is vulnerable to Cross Site Scripting (XSS)

EUVDPatchstackWordfenceCVE
N/A
2022-04-05< 1.7.5

Faculty Staff and Student Directory Plugin – Campus Directory <= 1.7.4 - Authenticated Stored Cross-Site Scripting

Wordfence
N/A
2022-04-05< 1.7.5

WordPress Campus Directory plugin <= 1.7.4 - Stored Cross-Site Scripting (XSS) vulnerability

Patchstack