Gwolle Guestbook

Vulnerabilities 10Slug gwolle-gbLatest version 4.10.1WordPress.org →

Minimum safe version

4.9.3

Update to 4.9.3 or later to address 10 fixable vulnerabilities

Latest available4.10.1 ✓

Medium 6.1

2025-07-10< 4.9.3

Gwolle Guestbook <= 4.9.2 - Unauthenticated Stored Cross-Site Scripting via `gwolle_gb_content` Parameter

High 7.1

2025-01-31< 4.7.2

CVE-2025-24710

N/A

< 2.1.1

Gwolle Guestbook <= 2.1.0 - Unauthenticated Stored Cross-Site Scripting (XSS)

N/A

< 2.1.1

Gwolle Guestbook <= 2.1.0 - Cross-Site Request Forgery (CSRF)

N/A

2017-03-01< 2.1.1

Gwolle Guestbook <= 2.1.0 - Cross-Site Request Forgery

N/A

2017-03-01< 2.1.1

Gwolle Guestbook <= 2.1.0 - Stored Cross-Site Scripting

N/A

2018-08-09< 2.5.4

WordPress Gwolle Guestbook plugin <= 2.5.3 - Cross-Site Scripting (XSS) vulnerability

Critical 9.0

2017-09-11< 1.5.4

CVE-2015-8351

Medium 6.1

2018-10-02< 2.5.4

CVE-2018-17884

Medium 6.1

2021-12-27< 4.2.0

CVE-2021-24980