Groundhogg
Adrian Tobey
Developer
4.4.1
Latest version
2,000
Installations
No date
Last updated
Vulnerability history
0 present
19 patched
9 Mitigation rules
- Broken Access Control vulnerability< 4.4.124/04/2026
- Arbitrary File Deletion vulnerability<= 4.416/04/2026
- Cross Site Scripting (XSS) vulnerability<= 4.2.623/11/2025
- Authenticated (Admin+) SQL Injection vulnerability<= 4.2.6.120/11/2025
- PHP Object Injection vulnerability<= 4.2.205/08/2025
- Arbitrary File Upload vulnerability<= 4.2.104/07/2025
- Authenticated (Administrator+) Arbitrary File Deletion vulnerability<= 4.1.1.209/05/2025
- Authenticated (Administrator+) Stored Cross-Site Scripting via label Parameter vulnerability<= 3.7.4.131/03/2025
- Authenticated (Author+) Arbitrary File Upload via gh_big_file_upload Function vulnerability<= 3.7.3.513/01/2025
- Reflected Cross Site Scripting (XSS) vulnerability<= 3.7.3.303/01/2025
- Reflected Cross Site Scripting (XSS) vulnerability<= 3.4.2.327/06/2024
- Cross Site Request Forgery (CSRF) vulnerability<= 3.4.2.321/06/2024
- Cross Site Scripting (XSS) vulnerability<= 2.7.11.1025/10/2023
- SQL Injection vulnerability<= 2.7.1130/05/2023
- Cross Site Request Forgery (CSRF)<= 2.7.1130/05/2023
- Cross-Site Request Forgery to Privilege Escalation vulnerability<= 2.7.9.822/05/2023
- Multiple Missing Authorization vulnerability<= 2.7.9.822/05/2023
- Auth. Stored Cross-Site Scripting (XSS) vulnerability<= 2.7.9.819/05/2023
- Admin+ SQLi vulnerability< 2.7.9.411/04/2023