wpweb
Web & CMS Pluginscommercial
Latest CVEs
The 15 most recently published vulnerabilities affecting wpweb.
- CVE-2025-68547WordPress Follow My Blog Post plugin <= 2.4.0 - Arbitrary Content Deletion vulnerability7.5
- CVE-2025-64258WordPress Follow My Blog Post plugin <= 2.3.9 - Sensitive Data Exposure vulnerability7.5
- CVE-2025-39472WordPress WooCommerce Social Login plugin < 2.8.3 - Cross Site Request Forgery (CSRF) vulnerability4.3
- CVE-2024-56265WordPress WooCommerce - PDF Vouchers plugin < 4.9.9 - Cross Site Scripting (XSS) vulnerability7.1
- CVE-2024-54383WordPress WooCommerce - PDF Vouchers plugin < 4.9.9 - Broken Authentication vulnerability9.8
- CVE-2024-10114Social Login - WordPress / WooCommerce Plugin <= 2.7.7 - Authentication Bypass via WordPress.com OAuth provider8.1
- CVE-2024-49272WordPress Social Auto Poster plugin <= 5.3.15 - Cross Site Request Forgery (CSRF) vulnerability4.3
- CVE-2024-47369WordPress Social Auto Poster plugin <= 5.3.15 - Reflected Cross Site Scripting (XSS) vulnerability7.1
- CVE-2024-43131WordPress Docket (WooCommerce Collections / Wishlist / Watchlist) plugin < 1.7.0 - Unauthenticated Arbitrary Post/Page Deletion vulnerability7.5
- CVE-2024-39651WordPress WooCommerce PDF Vouchers plugin < 4.9.5 - Unauthenticated Arbitrary File Deletion vulnerability8.6
- CVE-2024-7503WooCommerce - Social Login <= 2.7.5 - Authentication Bypass to Account Takeover9.8
- CVE-2024-6755Social Auto Poster <= 5.3.14 - Missing Authorization to Unauthenticated Arbitrary Post Deletion6.5
- CVE-2024-6751Social Auto Poster <= 5.3.14 - Cross-Site Request Forgery via Multiple Functions6.3
- CVE-2024-7027WooCommerce - PDF Vouchers <= 4.9.3 - Authentication Bypass to Voucher Vendor7.3
- CVE-2024-6754Social Auto Poster <= 5.3.14 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Meta Update via wpw_auto_poster_update_tweet_template5.4