Vulnerabilities > Brechtvds
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-22 | CVE-2025-46227 | Cross-site Scripting vulnerability in Brechtvds Custom Related Posts Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brecht Custom Related Posts allows Stored XSS. | 5.4 |
| 2025-02-01 | CVE-2024-12825 | Missing Authorization vulnerability in Brechtvds Custom Related Posts The Custom Related Posts plugin for WordPress is vulnerable to unauthorized access & modification of data due to a missing capability check on three AJAX actions in all versions up to, and including, 1.7.3. | 5.4 |