EUVD-2024-49870

Malicious code in bioql PyPI...

WordPress BerqWP Plugin <= 2.2.53 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Bao - BlueRock in WordPress Plugin BerqWP versions = 2.2.53...

CVE-2025-58979

CVE-2025-58979 (BerqWP

CVE-2025-58979 WordPress BerqWP Plugin <= 2.2.53 - Broken Access Control Vulnerability

Missing Authorization vulnerability in BerqWP BerqWP allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects BerqWP: from n/a through 2.2.53...

CVE-2025-7443

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the storejavascriptcache.php file in all versions up to, and including, 2.2.4...

CVE-2025-7443

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the storejavascriptcache.php file in all versions up to, and including, 2.2.4...

CVE-2025-7443 BerqWP <= 2.2.42 - Unauthenticated Arbitrary File Upload

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the storejavascriptcache.php file in all versions up to, and including, 2.2.4...

PT-2025-31602 · WordPress · Berqwp

Name of the Vulnerable Software and Affected Versions: BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript versions up to and including 2.2.42 Description: The BerqWP plugin for WordPress is susceptible to arbitrary file uploads due t...

WordPress plugin BerqWP 代码问题漏洞

WordPress BerqWP plugin is an automated performance optimization plugin for the WordPress platform, which is mainly used to improve website loading speed, Core Web Vitals score and search engine ranking. A file upload vulnerability exists in the WordPress BerqWP plugin, which stems from a missing...

CVE-2024-9344

The BerqWP – Automated All-In-One PageSpeed Optimization Plugin for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'url' parameter in all versions up to, and including, 2.1.1 due to insufficient input...

CVE-2024-9344

The BerqWP – Automated All-In-One PageSpeed Optimization Plugin for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'url' parameter in all versions up to, and including, 2.1.1 due to insufficient input...

WordPress BerqWP plugin <= 2.1.1 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin BerqWP versions = 2.1.1...

WordPress plugin BerqWP 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

PT-2024-39580 · WordPress · Berqwp

Name of the Vulnerable Software and Affected Versions: The BerqWP – Automated All-In-One PageSpeed Optimization Plugin for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress versions up to, and including, 2.1.1 Description: The issue is related to Reflected Cross-Site...

WordPress BerqWP plugin <= 1.7.6 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by Dave Jong Patchstack in WordPress Plugin BerqWP versions = 1.7.6...

CVE-2024-37942

Server-Side Request Forgery SSRF vulnerability in Berqier Ltd BerqWP.This issue affects BerqWP: from n/a through 1.7.5...

WordPress BerqWP plugin <= 1.7.5 - Unauthenticated Non-Blind Server Side Request Forgery (SSRF) vulnerability

Unauthenticated Non-Blind Server Side Request Forgery SSRF vulnerability discovered by Dave Jong Patchstack in WordPress Plugin BerqWP versions = 1.7.5...