CVE-2026-32562 WordPress PPWP plugin <= 1.9.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

CVE-2026-25026 WordPress Team plugin <= 5.0.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in RadiusTheme Team tlp-team allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team: from n/a through = 5.0.11...

CVE-2026-25026

CVE-2026-25026 affects the WordPress Plugin Team (RadiusTheme Team tlp-team) with versions n/a through 5.0.11, described as a Missing Authorization / Broken Access Control vulnerability. The underlying issue is improper access-control configuration that could allow exploitation without privileges...

CVE-2026-25026 WordPress Team plugin <= 5.0.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in RadiusTheme Team tlp-team allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team: from n/a through = 5.0.11...

WordPress Team plugin <= 5.0.11 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Doan Dinh Van in WordPress Plugin Team versions = 5.0.11...

CVE-2026-32396 WordPress Team plugin <= 5.0.13 - Broken Access Control vulnerability

Missing Authorization vulnerability in RadiusTheme Team tlp-team allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team: from n/a through = 5.0.13...

CVE-2026-32396 WordPress Team plugin <= 5.0.13 - Broken Access Control vulnerability

Missing Authorization vulnerability in RadiusTheme Team tlp-team allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team: from n/a through = 5.0.13...

VulnCheck KEV: CVE-2015-5471

Absolute path traversal vulnerability in include/user/download.php in the Swim Team plugin 1.44.10777 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter...

Exploit for CVE-2025-14124

CVE-2025-14124 WordPress Team Plugin - Unauthenticated SQL...

CVE-2025-29004

Incorrect Privilege Assignment vulnerability in AA-Team Premium Age Verification / Restriction for WordPress, AA-Team Responsive Coming Soon Landing Page / Holding Page for WordPress allows Privilege Escalation.This issue affects Premium Age Verification / Restriction for WordPress: from n/a...

CVE-2025-29004 Privilege Escalation Vulnerability in AA-Team WordPress plugins

Incorrect Privilege Assignment vulnerability in AA-Team Premium Age Verification / Restriction for WordPress, AA-Team Responsive Coming Soon Landing Page / Holding Page for WordPress allows Privilege Escalation.This issue affects Premium Age Verification / Restriction for WordPress: from n/a...

CVE-2025-29004

CVE-2025-29004 is an privilege escalation vulnerability affecting AA-Team Premium Age Verification / Restriction for WordPress and AA-Team Responsive Coming Soon Landing Page / Holding Page for WordPress. Multiple sources (NVD, Red Hat, CIRCL, Patchstack, PT Security) describe an incorrect privil...

PT-2026-1509

Name of the Vulnerable Software and Affected Versions AA-Team Premium Age Verification / Restriction for WordPress versions through 3.0.2 AA-Team Responsive Coming Soon Landing Page / Holding Page for WordPress versions through 3.0 Description An incorrect privilege assignment exists in AA-Team...

WordPress Team plugin < 5.0.11 - Unauthenticated SQLi vulnerability

Unauthenticated SQLi vulnerability discovered by Alex Tselevich nos3curity in WordPress Plugin Team versions 5.0.11...

CVE-2025-14124

CVE-2025-14124 affects WordPress Team Plugin versions prior to 5.0.11. An unauthenticated attacker can trigger a SQL injection via an AJAX action due to insufficient sanitization/escaping of a parameter used in a SQL statement. The associated exploit/example on GitHub demonstrates an unauthentica...

CVE-2025-14124 Team < 5.0.11 - Unauthenticated SQLi

The Team WordPress plugin before 5.0.11 does not properly sanitize and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

CVE-2025-14124 Team < 5.0.11 - Unauthenticated SQLi

The Team WordPress plugin before 5.0.11 does not properly sanitize and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...

WordPress plugin Team 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

PT-2026-1214

Name of the Vulnerable Software and Affected Versions The Team WordPress plugin versions prior to 5.0.11 Description The Team WordPress plugin does not properly sanitize and escape a parameter before using it in a SQL statement via an AJAX action. This allows unauthenticated users to potentially...

EUVD-2022-37602

Malicious code in bioql PyPI...