CVE ID : CVE-2025-1671 Published : March 1, 2025, 8:15 a.m. | 56 minutes ago Description : The Academist Membership plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.1.6. This is due to the academist_membership_check_facebook_user() function not properly verifying a user’s identity prior to authenticating them. This makes it […]
CVE ID : CVE-2025-1638 Published : March 1, 2025, 8:15 a.m. | 56 minutes ago Description : The Alloggio Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.2. This is due to the plugin not properly validating a user’s identity through the alloggio_membership_init_rest_api_facebook_login and alloggio_membership_init_rest_api_google_login functions. This makes […]
CVE ID : CVE-2025-1564 Published : March 1, 2025, 8:15 a.m. | 56 minutes ago Description : The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated […]
CVE ID : CVE-2024-13911 Published : March 1, 2025, 8:15 a.m. | 56 minutes ago Description : The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.35 via the /dashboard/backup.php file. This makes it possible for authenticated attackers, with […]
CVE ID : CVE-2024-13806 Published : March 1, 2025, 8:15 a.m. | 56 minutes ago Description : The The Authors List plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.6. This is due to the software allowing users to execute an action that does not properly validate a […]
CVE ID : CVE-2024-12544 Published : March 1, 2025, 8:15 a.m. | 56 minutes ago Description : The SurveyJS: Drag & Drop WordPress Form Builder to create, style and embed multiple forms of any complexity plugin for WordPress is vulnerable to arbitrary file deletion due to a missing capability check on the callback function of the […]
The following table lists the changes that have been made to the CVE-2025-1502 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Mar. 01, 2025 Action […]
The Simple Download Counter plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 2.0 via the ‘simple_download_counter_download_handler’. This makes it possible for authenticated attackers, with Author-level access and above, to extract sensitive data including any local file on the server, such as wp-config.php or /etc/passwd.
The following table lists the changes that have been made to the CVE-2024-13373 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Mar. 01, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-1459 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Mar. 01, 2025 Action […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
