WP Recipe Maker

Brecht

Developer

10.3.2

Latest version

50,000

Installations

No date

Last updated

WordPress Plugin

Active VDP

Report vulnerability

Vulnerabilities

Security Policy

Security Contributors

Vulnerability history

0 present

16 fixed

3 Mitigation rules

Broken Access Control vulnerability
<= 10.2.4
2 days ago
Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
<= 10.2.3
Dec 16, 2025
Insecure Direct Object Reference to Sensitive Information Exposure vulnerability
<= 10.2.2
Dec 12, 2025
Content Injection vulnerability
< 10.1.0
Sep 26, 2025
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 9.8.0
Mar 12, 2025
Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via 'tooltip' vulnerability
<= 9.6.1
Oct 24, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting via wprm-recipe-roundup-item Shortcode vulnerability
<= 9.3.1
May 2, 2024
Authenticated Stored Cross-Site Scripting via Video Embed vulnerability
<= 9.2.1
Mar 14, 2024
Missing Authorization to Authenticated (Subscriber+) SQL Injecton vulnerability
<= 9.1.2
Feb 8, 2024
Directory Traversal vulnerability
<= 9.1.0
Jan 18, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
<= 9.1.0
Jan 18, 2024
Reflected Cross-Site Scripting via Referer vulnerability
<= 9.1.0
Jan 18, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting via Recipe Notes vulnerability
<= 9.1.0
Jan 18, 2024
Authenticated(Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
<= 9.1.0
Jan 18, 2024
Authenticated (Contributor+) Stored Cross-Site Scripting via header_tag vulnerability
<= 9.1.0
Jan 18, 2024
Contributor+ Stored XSS vulnerability
< 8.6.1
Dec 20, 2022