Vulnerabilities > Uncannyowl > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-25 CVE-2024-8349 Missing Authorization vulnerability in Uncannyowl Uncanny Groups for Learndash
The Uncanny Groups for LearnDash plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 6.1.0.1.
network
low complexity
uncannyowl CWE-862
7.2
7.2
2024-06-21 CVE-2024-37118 Cross-Site Request Forgery (CSRF) vulnerability in Uncannyowl Uncanny Automator
Cross Site Request Forgery (CSRF) vulnerability in Uncanny Owl Uncanny Automator Pro.This issue affects Uncanny Automator Pro: from n/a through 5.3.
network
low complexity
uncannyowl CWE-352
8.8
8.8
2023-05-26 CVE-2023-23714 Unspecified vulnerability in Uncannyowl Uncanny Toolkit for Learndash
Cross-Site Request Forgery (CSRF) vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash plugin <= 3.6.4.1 versions.
network
low complexity
uncannyowl
8.8
8.8