CVE-2025-62753 WordPress MAS Videos plugin <= 1.3.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in MadrasThemes MAS Videos allows PHP Local File Inclusion.This issue affects MAS Videos: from n/a through 1.3.2...

WordPress MAS Videos plugin <= 1.3.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin MAS Videos versions = 1.3.4...

WordPress MAS Elementor Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)

Software MAS Elementor Type Plugin Vulnerable versions = 1.1.6 Fixed in 1.1.7 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49233 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 382acdfc426d Credits Khalid Yusuf Required privilege...

WordPress MAS Static Content plugin <= 1.0.8 - Authenticated (Contributor+) Private Static Content Page Disclosure vulnerability

Authenticated Contributor+ Private Static Content Page Disclosure vulnerability discovered by emad in WordPress Plugin MAS Static Content versions = 1.0.8...

WordPress MAS Static Content Plugin <= 1.0.8 is vulnerable to Sensitive Data Exposure

Software MAS Static Content Type Plugin Vulnerable versions = 1.0.8 Fixed in 1.0.9 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-8483 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8e2ab525d3bb Credits emad Required privilege...