WOLF – WordPress Posts Bulk Editor and Manager Professional

Information

Software Type Plugin
Software Slug bulk-editor (view on wordpress.org)
Software Status Active
Software Author realmag777
Software Website bulk-editor.pro
Software Downloads 59,221
Software Active Installs 5,000
Software Record Last Updated December 22, 2024

11 Vulnerabilities

Title Status CVE ID CVSS Researchers Date
WOLF <= 1.0.8.3 - Authenticated (Editor+) CSV Path Traversal Patched CVE-2024-52396 2.7 Trương Hữu Phúc (truonghuuphuc) November 11, 2024
WOLF – WordPress Posts Bulk Editor and Manager Professional <= 1.0.8.2 - Authenticated (Admin+) Stored Cross-Site Scripting Patched CVE-2024-34558 4.4 Elmini May 7, 2024
BEAR <= 1.1.4.1 & WOLF <= 1.0.8.1 - Cross-Site Request Forgery to Notice Dismissal Patched CVE-2024-31430 5.3 Dhabaleshwar Das April 10, 2024
WOLF – WordPress Posts Bulk Editor and Manager Professional <= 1.0.8.1 - Cross-Site Request Forgery Patched CVE-2024-0790 5.4 Francesco Carlucci January 30, 2024
WOLF – WordPress Posts Bulk Editor and Manager Professional <= 1.0.8.1 - Missing Authorization Patched CVE-2024-0791 4.3 Francesco Carlucci January 30, 2024
WOLF <= 1.0.8 - Unauthenticated Stored Cross-Site Scripting via profile_title Patched CVE-2024-22159 6.1 thiennv January 16, 2024
WOLF <= 1.0.7.1 - Cross-Site Request Forgery Patched CVE-2023-46152 4.3 thiennv October 17, 2023
WOLF <= 1.0.7.1 - Authenticated (Administrator+) Stored Cross-Site Scripting Patched CVE-2023-44990 4.4 emad October 2, 2023
WOLF <= 1.0.7 - Cross-Site Request Forgery via create_profile Patched CVE-2023-34028 4.3 thiennv May 29, 2023
WOLF <= 1.0.6 - Authenticated (Subscriber+) Stored Cross-Site Scripting via wpbe_update_page_field Patched CVE-2023-31218 6.4 Junsu Yeo May 3, 2023
WOLF <= 1.0.6 - Cross-Site Request Forgery via wpbe_update_page_field Patched 4.3 Junsu Yeo May 3, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation