All 4 CVE vulnerabilities found in myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-47853 | WordPress myCred Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 6.5 | Medium | 2023-11-30 |
| CVE-2021-25015 | myCred < 2.4 - Reflected Cross-Site Scripting CWE-79 | 6.1 | - | 2022-01-24 |
| CVE-2021-24755 | myCred < 2.3 - Subscriber+ SQL Injection CWE-89 | 8.8 | - | 2021-11-29 |
| CVE-2017-20008 | myCRED < 1.7.8 - Reflected Cross-Site Scripting CWE-79 | 6.1 | - | 2021-11-29 |
All 4 known CVE vulnerabilities affecting myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin with full Chinese analysis, references, and POCs where available.