N/A
2026-04-09< 2.4.8
WordPress Ultimate FAQ Plugin <= 2.4.7 is vulnerable to Cross Site Scripting (XSS)
Ultimate FAQ Accordion Plugin
Minimum safe version
2.4.8
Update to 2.4.8 or later to address 9 fixable vulnerabilities
Latest available2.4.10 ✓
Medium 4.3
2025-12-09< 2.4.4
CVE-2025-67590
N/A
2019-09-23< 1.8.25
WordPress Ultimate FAQ plugin <= 1.8.24 - Unauthenticated Options Import/Export vulnerability
N/A
2020-01-07< 1.8.30
WordPress Ultimate FAQ plugin <= 1.8.29 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability
Medium 6.1
2019-08-27< 1.8.22
CVE-2019-15643
High 7.5
2019-10-07< 1.8.25
CVE-2019-17232
Medium 6.1
2019-10-07< 1.8.25
CVE-2019-17233
Medium 6.1
2020-01-16< 1.8.30
CVE-2020-7107
Medium 5.7
2022-01-24< 2.1.2
CVE-2021-24968