Windsor Strava Athlete

Vulnerabilities 3Slug windsor-strava-athleteLatest version 1.3.6Plugin page →

Minimum safe version

No explicit fix version available

Latest available1.3.6 ⚠ 3 vulnerabilities have no fix
N/A Unfixed
2023-07-18≤ 1.3.3

WordPress Windsor Strava Athlete Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

PatchstackWPScanCVE
N/A Unfixed Closed
2022-02-28≤ 1.3.6

WordPress Windsor Strava Athlete plugin <= 1.3.6 - Sensitive Information Disclosure vulnerability

Patchstack
N/A Unfixed Closed
2022-02-28≤ 1.3.6

WordPress Windsor Strava Athlete plugin <= 1.3.6 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack