📦 Groundhogg

by Groundhogg

🔍 What is Groundhogg?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-37264

HIGH CVSS 7.1 Jul 22, 2024

This vulnerability allows attackers to inject malicious scripts into web pages generated by the Groundhogg WordPress plugin. When users visit a specially crafted URL, the script executes in their brow...

CVE-2023-34178

HIGH CVSS 8.8 Nov 9, 2023

This CSRF vulnerability in the Groundhogg WordPress plugin allows attackers to trick authenticated administrators into performing unintended actions. Users running Groundhogg plugin versions 2.7.11 an...

CVE-2023-34179

HIGH CVSS 7.2 Nov 3, 2023

This SQL injection vulnerability in the Groundhogg WordPress plugin allows attackers to execute arbitrary SQL commands on affected databases. It affects all WordPress sites running Groundhogg versions...

CVE-2023-2736

HIGH CVSS 7.5 May 20, 2023

This CSRF vulnerability in the Groundhogg WordPress plugin allows authenticated attackers to trick administrators into performing actions that modify auto-login links. Attackers can then elevate privi...

CVE-2024-37235

MEDIUM CVSS 4.3 Jan 2, 2025

This CSRF vulnerability in Groundhogg WordPress plugin allows attackers to trick authenticated administrators into performing unintended actions. It affects all WordPress sites using Groundhogg versio...