Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Team_\-_wordpress_team_members_showcase
(Radiustheme)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-05-15 | CVE-2024-9236 | The Team WordPress plugin before 4.4.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). | Team_\-_wordpress_team_members_showcase | N/A | ||
| 2022-08-22 | CVE-2022-2557 | The Team WordPress plugin before 4.1.2 contains a file which could allow any authenticated users to download arbitrary files from the server via a path traversal vector. Furthermore, the file will also be deleted after its content is returned to the user | Team_\-_wordpress_team_members_showcase | 8.8 |