WordPress ContentMX Content Publisher plugin <= 1.0.6 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin ContentMX Content Publisher versions = 1.0.6...

PT-2025-40506

Name of the Vulnerable Software and Affected Versions ContentMX Content Publisher plugin for WordPress versions up to and including 1.0.6 Description The software is susceptible to a Cross-Site Request Forgery CSRF issue. This is caused by a lack of, or incorrect, nonce validation in the cmx...

WordPress ContentMX Content Publisher plugin <= 1.0.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin ContentMX Content Publisher versions = 1.0.6...

CVE-2025-31555 WordPress ContentMX Content Publisher plugin <= 1.0.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in ContentMX ContentMX Content Publisher allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ContentMX Content Publisher: from n/a through 1.0.6...

CVE-2025-31555 WordPress ContentMX Content Publisher plugin <= 1.0.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in ContentMX ContentMX Content Publisher contentmx-content-publisher allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ContentMX Content Publisher: from n/a through = 1.0.6...

CVE-2025-31555

Technical details for CVE-2025-31555 are not provided in the connected documents; monitor for updates and official advisories.