Log out
Get PRO

Latest

Access violation vulnerability in myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin 2.4.4

  • Severity: medium-risk
  • Status: Fixed
  • Publication: March 29, 2022

The myCred WordPress plugin before version 2.4.4 did not have any security measures in place to stop people from using it. This means that any user that was logged in

Detected in:

myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give Points, Ranks, Badges, Cashback, WooCommerce rewards, and WooCommerce credits for Gamification fixed vulnerable versions:
myCred – Points and Rewards, Ranks, Badges & Loyalty Plugin for WordPress and WooCommerce fixed vulnerable versions:
myCred – Points Management System For Gamification, Ranks, Badges, and Loyalty Program. fixed vulnerable versions:
myCred – Points Management System For Gamification, Ranks, Badges, and Loyalty Rewards Program. fixed vulnerable versions:
myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin fixed vulnerable versions: >= * < 2.4.4

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.