wpDiscuz
AdvancedCoding
Developer
7.6.37
Latest version
80,000
Installations
Nov 8, 2025
Last updated
Vulnerability history
0 present
23 fixed
7 Mitigation rules
- Broken Access Control Vulnerability<= 7.6.33Sep 22, 2025
- Authentication Bypass vulnerability<= 7.6.24Oct 24, 2024
- Unauthenticated HTML Injection vulnerability<= 7.6.21Aug 2, 2024
- Cross Site Scripting (XSS) vulnerability<= 7.6.18Jun 6, 2024
- Authenticated (Author+) Stored Cross-Site Scripting via Uploaded Image Alternative Text vulnerability<= 7.6.15Apr 23, 2024
- Cross Site Scripting (XSS) vulnerability<= 7.6.12Dec 27, 2023
- Cross Site Request Forgery (CSRF) vulnerability<= 7.6.11Nov 14, 2023
- Cross Site Scripting (XSS) vulnerability<= 7.6.11Nov 2, 2023
- Insecure Direct Object References (IDOR) vulnerability<= 7.6.3Oct 22, 2023
- Content Injection vulnerability<= 7.6.10Oct 22, 2023
- Broken Access Control vulnerability<= 7.6.10Oct 22, 2023
- Broken Access Control vulnerability<= 7.6.3Oct 12, 2023
- Unauthenticated SQL Injection vulnerability< 7.6.6Sep 19, 2023
- Insecure Direct Object Reference to Comment Rating Increase/Decrease vulnerability<= 7.6.3Sep 14, 2023
- Insecure Direct Object Reference to Post Rating Increase/Decrease vulnerability<= 7.6.3Sep 14, 2023
- Insecure Direct Object References (IDOR) vulnerability7.4.2Oct 28, 2022
- Sensitive Information Disclosure<= 7.3.11Feb 10, 2022
- Cross-Site Request Forgery (CSRF) vulnerability leading to Arbitrary Comment Addition/Edition/Deletion<= 7.3.3Oct 11, 2021
- Stored Cross-Site Scripting (XSS) vulnerability<= 7.3.1Sep 13, 2021
- Unauthenticated Arbitrary File Upload vulnerability<= 7.0.4Jul 28, 2020
- Unauthenticated SQL Injection (SQLi) vulnerability<= 5.3.5Jun 12, 2020
- Cross-Site Request Forgery (CSRF) Vulnerability<= 3.2.8Jun 20, 2017
- Reflected Cross Site Scripting (XSS)<= 3.1.4May 30, 2016