cbcvebase.

Wpdelicious Wp Delicious Recipe Plugin For Food Bloggers vulnerabilities

3 known vulnerabilities affecting wpdelicious/wp_delicious_recipe_plugin_for_food_bloggers.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2022-4974P2MEDIUMCVSS 6.3Exploitedfixed in 1.3.52024-10-16
CVE-2022-4974 [MEDIUM] CWE-862 CVE-2022-4974: The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cr The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme runni
nvd
CVE-2025-11755P2HIGHCVSS 8.8≤ 1.9.02025-11-01
CVE-2025-11755 [HIGH] CWE-434 CVE-2025-11755: The WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for WordPress The WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for WordPress is vulnerable to arbitrary file uploads when importing recipes via CSV in all versions up to, and including, 1.9.0. This flaw allows an attacker with at least Contributor-level permissions to upload a malicious PHP file by providing a remote URL during
nvd
CVE-2024-7626P3HIGHCVSS 8.1≤ 1.6.92024-09-11
CVE-2024-7626 [HIGH] CWE-73 CVE-2024-7626: The WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for WordPress The WP Delicious – Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for WordPress is vulnerable to arbitrary file movement and reading due to insufficient file path validation in the save_edit_profile_details() function in all versions up to, and including, 1.6.9. This makes it possible for authenticated attackers, with subscriber-leve
nvd
Wpdelicious Wp Delicious Recipe Plugin For Food Bloggers vulnerabilities | cvebase