Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
Shabti
Frontend Admin By Dynamiapps

shabti Frontend Admin by DynamiApps Vulnerabilities: CVEs, CISA KEV & Security Advisories

14 CVEs

shabti Frontend Admin by DynamiApps Vulnerabilities

CVE security advisories and vulnerability history for Frontend Admin by DynamiApps by shabti.

14

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

0

Public exploits

With known exploit

8.0

Avg CVSS

2024–2026

Last updated May 29, 2026

Overview

shabti Frontend Admin by DynamiApps has 14 published CVE records since 2024, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 0 have a known public exploit. The average CVSS base score across scored CVEs is 8.0.

This page aggregates every publicly disclosed vulnerability (CVE) affecting shabti Frontend Admin by DynamiApps, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Severity and exploitation

How the CVSS severity of shabti Frontend Admin by DynamiApps's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical4

High7

Medium3

Low0

In CISA’s Known Exploited Vulnerabilities catalog

0

None of shabti Frontend Admin by DynamiApps's CVEs are currently listed in CISA's KEV catalog.

Public exploits

0

No shabti Frontend Admin by DynamiApps CVEs currently have a tracked public exploit.

Affected versions and CVEs

Browse every shabti Frontend Admin by DynamiApps version named in a CVE, then pick one to see only the CVEs that affect it.

Fixed in

> 3.24.52 CVEs
> 3.29.22 CVEs
> 3.19.41 CVE
> 3.25.11 CVE
> 3.28.201 CVE
> 3.28.231 CVE
> 3.28.251 CVE
> 3.28.291 CVE
> 3.28.311 CVE
> 3.28.361 CVE
> 3.28.81 CVE
3.3.331 CVE

Find a version

14 CVEs

Sort

Frontend Admin by DynamiApps <= 3.28.28 - Authenticated (Administrator+) SQL Injection via 'order' Parameter
CVE-2026-10039
Patch
CWE-89
Medium · CVSS 4.9
EPSS 0.0% (11th pct)2026-05-29
Frontend Admin by DynamiApps <= 3.29.2 - Unauthenticated Privilege Escalation via Form Configuration Injection
CVE-2026-6226
Patch
CWE-269
High · CVSS 8.8
EPSS 0.1% (34th pct)2026-05-28
Frontend Admin by DynamiApps <= 3.29.2 - Missing Authorization to Authenticated (Subscriber+) Account Takeover via 'user_id' URL Query Parameter
CVE-2026-7802
Patch
CWE-862
High · CVSS 8.8
EPSS 0.1% (20th pct)2026-05-28
Frontend Admin by DynamiApps <= 3.28.36 - Unauthenticated Privilege Escalation via Edit User Form
CVE-2026-6228
Patch
CWE-269
High · CVSS 8.8
EPSS 0.1% (31th pct)2026-05-15
Frontend Admin by DynamiApps <= 3.28.31 - Authenticated (Editor+) PHP Object Injection via 'post_content' of Admin Form Posts
CVE-2026-3328
Patch
CWE-502
High · CVSS 7.2
EPSS 0.6% (69th pct)2026-03-26
Frontend Admin by DynamiApps <= 3.28.25 - Missing Authorization to Unauthenticated Arbitrary Data Deletion via 'delete post' Form Element
CVE-2025-14741
Patch
CWE-862
Critical · CVSS 9.1
EPSS 0.1% (17th pct)2026-01-09
Frontend Admin by DynamiApps <= 3.28.23 - Unauthenticated Stored Cross-Site Scripting via 'update_field'
CVE-2025-14937
Patch
CWE-79
High · CVSS 7.2
EPSS 0.1% (19th pct)2026-01-09
Frontend Admin by DynamiApps <= 3.28.29 - Unauthenticated Privilege Escalation to Administrator via Role Form Field
CVE-2025-14736
Patch
CWE-269
Critical · CVSS 9.8
EPSS 0.0% (12th pct)2026-01-09
Frontend Admin by DynamiApps <= 3.28.20 - Unauthenticated Arbitrary Options Update
CVE-2025-13342
Patch
CWE-862
Critical · CVSS 9.8
EPSS 0.1% (23th pct)2025-12-03
Frontend Admin by DynamiApps <= 3.25.1 - Unauthenticated SQL Injection
CVE-2024-11722
Patch
CWE-89
Medium · CVSS 5.9
EPSS 1.0% (77th pct)2024-12-21
Frontend Admin by DynamiApps <= 3.24.5 - Unauthenticated Privilege Escalation
CVE-2024-11721
Patch
CWE-269
High · CVSS 8.1
EPSS 0.3% (56th pct)2024-12-14
Frontend Admin by DynamiApps <= 3.24.5 - Unauthenticated Stored Cross-Site Scripting
CVE-2024-11720
Patch
CWE-79
High · CVSS 7.2
EPSS 1.4% (81th pct)2024-12-14
Freemius SDK <= 2.4.2 - Missing Authorization Checks
CVE-2022-4974
Patch
CWE-862
Medium · CVSS 6.3
EPSS 0.2% (43th pct)2024-10-16
Frontend Admin by DynamiApps <= 3.19.4 - Improper Missing Encryption Exception Handling to Form Manipulation
CVE-2024-3729
Patch
CWE-636
Critical · CVSS 9.8
EPSS 0.7% (73th pct)2024-05-02

Common weakness types

The CWE weakness categories most often found in shabti Frontend Admin by DynamiApps CVEs. Follow any weakness for its full explanation.

CWE-269Improper Privilege Management4 CVEs
CWE-862Missing Authorization4 CVEs
CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')2 CVEs
CWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')2 CVEs
CWE-502Deserialization of Untrusted Data1 CVE
CWE-636Not Failing Securely ('Failing Open')1 CVE

Disclosure activity by year

How many shabti Frontend Admin by DynamiApps CVEs were published each year.

2024

5

2025

1

2026

8

Other shabti products

Browse vulnerabilities for other products by shabti.

Frontend Admin – Add and edit posts, pages, users and more all from the frontend1 CVEs

All shabti vulnerabilities

Frequently asked questions

Common questions about shabti Frontend Admin by DynamiApps vulnerabilities.

How many CVEs does shabti Frontend Admin by DynamiApps have?

shabti Frontend Admin by DynamiApps has 14 published CVE records since 2024.

How many shabti Frontend Admin by DynamiApps CVEs are in CISA KEV?

None of shabti Frontend Admin by DynamiApps's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for shabti Frontend Admin by DynamiApps vulnerabilities?

No shabti Frontend Admin by DynamiApps CVEs currently have a tracked public exploit in this dataset.

Which versions of shabti Frontend Admin by DynamiApps are affected?

12 distinct shabti Frontend Admin by DynamiApps versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.

What are the most common weakness types in shabti Frontend Admin by DynamiApps CVEs?

shabti Frontend Admin by DynamiApps's CVEs most often map to these CWE weakness types: CWE-269 (Improper Privilege Management), CWE-862 (Missing Authorization), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')).

How many critical shabti Frontend Admin by DynamiApps vulnerabilities are there?

shabti Frontend Admin by DynamiApps has 4 critical and 7 high-severity CVEs.

What is the average severity of shabti Frontend Admin by DynamiApps CVEs?

The average CVSS base score across shabti Frontend Admin by DynamiApps's scored CVEs is 8.0.

References

All shabti vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track shabti Frontend Admin by DynamiApps vulnerabilities

Monitor new shabti Frontend Admin by DynamiApps vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Disclosure activity
Other products
FAQ
References