Groundhogg
Adrian Tobey
Developer
4.2.9
Latest version
2,000
Installations
No date
Last updated
Vulnerability history
0 present
17 fixed
7 Mitigation rules
- Cross Site Scripting (XSS) vulnerability<= 4.2.6Nov 23, 2025
- Authenticated (Admin+) SQL Injection vulnerability<= 4.2.6.1Nov 20, 2025
- PHP Object Injection vulnerability<= 4.2.2Aug 5, 2025
- Arbitrary File Upload vulnerability<= 4.2.1Jul 4, 2025
- Authenticated (Administrator+) Arbitrary File Deletion vulnerability<= 4.1.1.2May 9, 2025
- Authenticated (Administrator+) Stored Cross-Site Scripting via label Parameter vulnerability<= 3.7.4.1Mar 31, 2025
- Authenticated (Author+) Arbitrary File Upload via gh_big_file_upload Function vulnerability<= 3.7.3.5Jan 13, 2025
- Reflected Cross Site Scripting (XSS) vulnerability<= 3.7.3.3Jan 3, 2025
- Reflected Cross Site Scripting (XSS) vulnerability<= 3.4.2.3Jun 27, 2024
- Cross Site Request Forgery (CSRF) vulnerability<= 3.4.2.3Jun 21, 2024
- Cross Site Scripting (XSS) vulnerability<= 2.7.11.10Oct 25, 2023
- SQL Injection vulnerability<= 2.7.11May 30, 2023
- Cross Site Request Forgery (CSRF)<= 2.7.11May 30, 2023
- Cross-Site Request Forgery to Privilege Escalation vulnerability<= 2.7.9.8May 22, 2023
- Multiple Missing Authorization vulnerability<= 2.7.9.8May 22, 2023
- Auth. Stored Cross-Site Scripting (XSS) vulnerability<= 2.7.9.8May 19, 2023
- Admin+ SQLi vulnerability< 2.7.9.4Apr 11, 2023