2 matches found
CVE-2025-9979
The Maspik plugin for WordPress is vulnerable to Missing Authorization in version 2.5.6 and prior. This is due to missing capability checks on the Maspikspamlogdownloadcsv function. This makes it possible for authenticated attackers, with subscriber-level access and above, to export and download...
PT-2025-37026
Name of the Vulnerable Software and Affected Versions: Maspik plugin for WordPress versions prior to 2.5.6 Description: The Maspik plugin for WordPress is susceptible to a missing authorization issue. This is caused by the absence of capability checks within the Maspik spamlog download csv...