Known Vulnerabilities
CVE-2023-46309
Missing Authorization vulnerability in gVectors Team wpDiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through 7.6.10.
MEDIUM
CVSS 5.3
Published Jan 02, 2025
CVE-2023-46310
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in gVectors Team wpDiscuz allows Code Injection.This issue affects wpDiscuz: from n/a through 7.6.10.
MEDIUM
CVSS 5.3
Published Jun 04, 2024
CVE-2023-47775
Cross-Site Request Forgery (CSRF) vulnerability in gVectors Team Comments — wpDiscuz plugin <= 7.6.11 versions.
MEDIUM
CVSS 4.3
Published Nov 22, 2023
CVE-2023-47185
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in gVectors Team Comments — wpDiscuz plugin <= 7.6.11 versions.
UNKNOWN
Published Nov 06, 2023