Lucene search
K

17 matches found

CNVD
CNVD
added 2025/11/14 12:0 a.m.4 views

WordPress Plugin Astra Security Suite - Firewall & Malware Scan Authorization Issues Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An authorization issue vulnerability exists in the WordPress plugin Astra Security Suite -...

8.1CVSS8.1AI score0.00472EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/11 6:30 a.m.6 views

EUVD-2025-60923

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and including, 0.2. This makes it possible for unauthenticated attacke...

8.1CVSS7.1AI score0.00472EPSS
Exploits0References3
NVD
NVD
added 2025/11/11 4:15 a.m.8 views

CVE-2025-11521

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and including, 0.2. This makes it possible for unauthenticated attacke...

8.1CVSS0.00472EPSS
Exploits0References2
CVE
CVE
added 2025/11/11 3:30 a.m.27 views

CVE-2025-11521

CVE-2025-11521 : Astra Security Suite – Firewall & Malware Scan WordPress plugin (versions up to 0.2) is vulnerable to unauthenticated arbitrary file upload due to insufficient validation of remote URLs for zip downloads and a easily guessable key. The vulnerability can allow uploading arbitrary ...

8.1CVSS7.2AI score0.00472EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/11 3:30 a.m.3 views

CVE-2025-11521 Astra Security Suite – Firewall & Malware Scan <= 0.2 - Unauthenticated Arbitrary File Upload

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and including, 0.2. This makes it possible for unauthenticated attacke...

8.1CVSS7.2AI score0.00472EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/11 3:30 a.m.18 views

CVE-2025-11521 Astra Security Suite – Firewall & Malware Scan <= 0.2 - Unauthenticated Arbitrary File Upload

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and including, 0.2. This makes it possible for unauthenticated attacke...

8.1CVSS0.00472EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/11/11 12:2 a.m.8 views

WordPress Astra Security Suite plugin <= 0.2 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by kr0d in WordPress Plugin Astra Security Suite versions = 0.2...

8.1CVSS7AI score0.00472EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.10 views

PT-2025-46248

Name of the Vulnerable Software and Affected Versions Astra Security Suite – Firewall & Malware Scan plugin for WordPress versions up to 0.2 Description The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is susceptible to arbitrary file uploads. This is due to inadequate...

8.1CVSS7.6AI score0.00472EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.6 views

WordPress plugin Astra Security Suite – Firewall & Malware Scan 授权问题漏洞

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An authorization issue vulnerability exists in the WordPress plugin Astra Security Suite -...

8.1CVSS7.8AI score0.00472EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.1 views

EUVD-2025-9231

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00457EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/03 4:49 p.m.6 views

CVE-2025-31774

Missing Authorization vulnerability in WebProtect.ai Astra Security Suite getastra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Astra Security Suite: from n/a through = 0.2...

5.3CVSS7.2AI score0.00457EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/01 3:52 p.m.6 views

WordPress plugin Astra Security Suite plugin<= 0.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Dhabaleshwar Das in WordPress Plugin Astra Security Suite versions = 0.2...

5.3CVSS8.5AI score0.00457EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/04/01 3:16 p.m.4 views

CVE-2025-31774

Missing Authorization vulnerability in WebProtect.ai Astra Security Suite getastra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Astra Security Suite: from n/a through = 0.2...

5.3CVSS0.00457EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/01 2:51 p.m.14 views

CVE-2025-31774 WordPress plugin Astra Security Suite plugin<= 0.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in WebProtect.ai Astra Security Suite getastra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Astra Security Suite: from n/a through = 0.2...

5.3CVSS0.00457EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 2:51 p.m.37 views

CVE-2025-31774

CVE-2025-31774 concerns a Missing Authorization vulnerability in Astra Security Suite (Firewall & Malware Scan). Affected: Astra Security Suite up to v0.2. Impact: bypass of access control/security levels due to misconfiguration. CVSS v3.1 base score 5.3 (Network, Low attack complexity, Privilege...

5.3CVSS7.2AI score0.00457EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 2:51 p.m.6 views

CVE-2025-31774 WordPress Astra Security Suite plugin<= 0.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in WebProtect.ai Astra Security Suite allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Astra Security Suite: from n/a through 0.2...

5.3CVSS7.1AI score0.00457EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.2 views

WordPress plugin Astra Security Suite 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS6.4AI score0.00457EPSS
Exploits0References2
Rows per page
Query Builder