Wp erp

This hub aggregates every CVE we track for Wp erp, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.

Web & CMS Pluginson-premcms plugin

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

HIGH13MEDIUM7

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting Wp erp.

CVE-2026-31917WordPress WP ERP plugin <= 1.16.10 - SQL Injection vulnerability8.5Mar 13, 2026
CVE-2025-67546WordPress WP ERP plugin <= 1.16.6 - Sensitive Data Exposure vulnerability6.5Dec 18, 2025
CVE-2025-63008WordPress WP ERP plugin <= 1.16.7 - Broken Access Control vulnerability5.3Dec 9, 2025
CVE-2024-12808WP ERP | Complete HR solution with recruitment < 1.13.4 - Admin+ Stored XSS4.8May 15, 2025
CVE-2024-12812WP ERP < 1.13.4 - Custom+ Unauthorized Access to Terminated Employee Information7.5May 15, 2025
CVE-2025-30896WordPress WP ERP plugin <= 1.13.4 - Broken Access Control vulnerability5.4Mar 27, 2025
CVE-2023-45765WordPress WP ERP plugin <= 1.12.6 - Broken Access Control vulnerability4.3Jan 2, 2025
CVE-2024-47640WordPress WP ERP plugin <= 1.13.2 - Reflected Cross Site Scripting (XSS) vulnerability7.1Oct 29, 2024
CVE-2024-6666WP ERP <= 1.13.0 - Authenticated (Accounting Manager+) SQL Injection via vendor_id8.8Jul 11, 2024
CVE-2024-1173WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.13.1 - Authenticated (AccountingManager+) SQL Injection7.2May 2, 2024
CVE-2024-0952WP ERP <= 1.12.9 - Authenticated (Accounting Manager+) SQL Injection via id7.2Apr 9, 2024
CVE-2024-0956WP ERP <= 1.13.0 - Authenticated (AccountingManager+) SQL Injection7.2Mar 29, 2024
CVE-2024-0609WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.13.1 - Unauthenticated Stored Cross-Site Scripting7.2Mar 29, 2024
CVE-2024-0608WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.13.1 - Authenticated (Subscriber+) SQL Injection8.8Mar 29, 2024
CVE-2024-0913WP ERP <= 1.13.0 - Authenticated (Accounting Manager+) SQL Injection7.2Mar 29, 2024

Product normalization is registry-driven with AI assist and human review. How it works