Medium 6.4
2026-04-18< 4.2.2
CVE-2026-2986
Contextual Related Posts
Minimum safe version
4.2.2
Update to 4.2.2 or later to address 14 fixable vulnerabilities
Latest available4.2.3 ✓
Medium 5.3
2026-03-18< 4.2.2
CVE-2026-32565
Medium 6.5
2025-05-07< 4.0.3
CVE-2025-47506
N/A
2023-02-21< 3.3.2
WordPress Contextual Related Posts Plugin <= 3.3.1 is vulnerable to Broken Access Control
N/A
2023-02-20< 3.3.2
Contextual Related Posts <= 3.3.1 - Cross-Site Request Forgery in crpClearCache
N/A
2023-02-20< 3.3.2
Contextual Related Posts <= 3.3.1 - Missing Authorization in crp_ajax_clearcache
Medium 5.4
2023-02-06< 3.3.1
CVE-2023-0252
N/A
2023-01-06< 3.3.1
WordPress Contextual Related Posts Plugin <= 3.3.0 is vulnerable to Cross Site Scripting (XSS)
N/A
2023-01-05< 3.3.1
Contextual Related Posts <= 3.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Block Attribute
N/A
2020-11-19< 2.9.4
Contextual Related Posts <= 2.9.3 - Cross-Site Request Forgery
N/A
< 2.9.4
Contextual Related Posts < 2.9.4 - CSRF Nonce Validation Bypass
N/A
2020-11-19< 2.9.4
WordPress Contextual Related Posts plugin <= 2.9.3 - Cross-Site Request Forgery (CSRF) Nonce Validation Bypass vulnerability
N/A
2014-08-01< 1.8.7
Contextual Related Posts <= 1.8.6 - Cross-Site Request Forgery to Cross-Site Scripting
N/A
2014-06-02< 1.8.10.2
CVE-2014-3937