Known Vulnerabilities for products from WpDevArt
Listed below are 20 of the newest known vulnerabilities associated with the vendor "WpDevArt".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-25435 json | Not Provided | 2026-03-25 | 2026-04-23 | |
| CVE-2025-67574 json | Not Provided | 2025-12-09 | 2026-04-27 | |
| CVE-2025-62886 json | Not Provided | 2025-10-27 | 2026-04-27 | |
| CVE-2025-47443 json | Not Provided | 2025-05-07 | 2026-04-23 | |
| CVE-2025-24719 json | Not Provided | 2025-01-24 | 2026-04-23 | |
| CVE-2024-31120 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevart Responsive Ima... | Not Provided | 2024-03-31 | 2026-04-28 |
| CVE-2024-30550 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevart Responsive Ima... | Not Provided | 2024-03-31 | 2026-04-28 |
| CVE-2023-47533 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.8 - MEDIUM | 2023-11-14 | 2023-11-17 |
| CVE-2023-46075 json | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in wpdevart Contact Form Builder, Contact Widget plugin <= 2.1.6 ... | 6.1 - MEDIUM | 2023-10-26 | 2023-11-03 |
| CVE-2023-45631 json | Not Provided | 2025-01-02 | 2026-04-28 | |
| CVE-2023-45630 json | Not Provided | 2023-10-18 | 2026-04-28 | |
| CVE-2023-45629 json | Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Gallery – Image and Video Gallery with Thumbnails plugin <= 2.... | 8.8 - HIGH | 2023-10-16 | 2024-02-01 |
| CVE-2023-24407 json | Missing Authorization vulnerability in WpDevArt Booking calendar, Appointment Booking System allows Exploiting Incorrectly Co... | Not Provided | 2024-12-09 | 2026-04-28 |
| CVE-2023-24388 json | Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin <= 3.2.3 ver... | Not Provided | 2023-02-17 | 2026-04-28 |
| CVE-2023-24387 json | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPdevart Organization chart plugin <= 1.4.4 versions. | 4.8 - MEDIUM | 2023-04-06 | 2023-11-07 |
| CVE-2023-24384 json | Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Organization chart <= 1.4.4 versions. | 8.8 - HIGH | 2023-02-23 | 2023-11-07 |
| CVE-2023-24004 json | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPdevart Image and Video Lightbox, Image PopUp plugin <= 2.... | 4.8 - MEDIUM | 2023-04-06 | 2023-11-07 |
| CVE-2023-24002 json | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPdevart YouTube Embed, Playlist and Popup by WpDevArt plug... | 4.8 - MEDIUM | 2023-04-06 | 2023-11-07 |
| CVE-2023-23983 json | Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Responsive Vertical Icon Menu plugin <= 1.5.8 can lead to theme d... | 5.4 - MEDIUM | 2023-02-28 | 2023-11-07 |
| CVE-2023-23972 json | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Smplug-in Social Like Box and Page by WpDevArt plugin <= 0.... | 4.8 - MEDIUM | 2023-04-06 | 2023-11-07 |
Known software with vulnerabilities from WpDevArt
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Wpdevart | Booking Calendar | 1.0.0 |
| Application | Wpdevart | Responsive Image Gallery | 1.2.0 |