BerqWP <= 1.7.6 - Arbitrary File Upload

The BerqWP Automated All-In-One PageSpeed Optimization Plugin for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the /api/storewebp.php file in all versions up to, and including, 1.7.6...

EUVD-2024-49870

Malicious code in bioql PyPI...

EUVD-2024-36899

Malicious code in bioql PyPI...

EUVD-2025-27393

Malicious code in bioql PyPI...

CVE-2025-58979

Missing Authorization vulnerability in BerqWP BerqWP searchpro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BerqWP: from n/a through = 2.2.53...

CVE-2025-58979

Missing Authorization vulnerability in BerqWP BerqWP searchpro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BerqWP: from n/a through = 2.2.53...

WordPress BerqWP Plugin <= 2.2.53 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Bao - BlueRock in WordPress Plugin BerqWP versions = 2.2.53...

CVE-2025-58979

CVE-2025-58979 (BerqWP

CVE-2025-58979 WordPress BerqWP Plugin <= 2.2.53 - Broken Access Control Vulnerability

Missing Authorization vulnerability in BerqWP BerqWP searchpro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects BerqWP: from n/a through = 2.2.53...

CVE-2025-58979 WordPress BerqWP Plugin <= 2.2.53 - Broken Access Control Vulnerability

Missing Authorization vulnerability in BerqWP BerqWP allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects BerqWP: from n/a through 2.2.53...

WordPress plugin BerqWP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

PT-2025-36800

Name of the Vulnerable Software and Affected Versions: BerqWP versions through 2.2.53 Description: A missing authorization issue exists in BerqWP, allowing exploitation of incorrectly configured access control security levels and enabling unauthorized access control bypass. Recommendations: Updat...

WordPress BerqWP plugin file upload vulnerability

WordPress BerqWP plugin is an automated performance optimization plugin for the WordPress platform, which is mainly used to improve website loading speed, Core Web Vitals score and search engine ranking. A file upload vulnerability exists in the WordPress BerqWP plugin, which stems from a missing...

CVE-2025-7443

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the storejavascriptcache.php file in all versions up to, and including, 2.2.4...

CVE-2025-7443

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the storejavascriptcache.php file in all versions up to, and including, 2.2.4...

CVE-2025-7443 BerqWP <= 2.2.42 - Unauthenticated Arbitrary File Upload

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the storejavascriptcache.php file in all versions up to, and including, 2.2.4...

CVE-2025-7443 BerqWP <= 2.2.42 - Unauthenticated Arbitrary File Upload

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the storejavascriptcache.php file in all versions up to, and including, 2.2.4...

CVE-2025-7443

The CVE-2025-7443 entry maps to the WordPress BerqWP plugin (versions up to and including 2.2.42). The vulnerability is an arbitrary file upload flaw caused by missing file-type validation in store_javascript_cache.php, which allows unauthenticated attackers to upload arbitrary files to the serve...

PT-2025-31602 · WordPress · Berqwp

Name of the Vulnerable Software and Affected Versions: BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript versions up to and including 2.2.42 Description: The BerqWP plugin for WordPress is susceptible to arbitrary file uploads due t...

WordPress plugin BerqWP 代码问题漏洞

WordPress BerqWP plugin is an automated performance optimization plugin for the WordPress platform, which is mainly used to improve website loading speed, Core Web Vitals score and search engine ranking. A file upload vulnerability exists in the WordPress BerqWP plugin, which stems from a missing...