4 matches found
CVE-2026-57401
The connected records document a concrete vulnerability in the WordPress SureDash plugin (Brainstorm Force) up to version 1.8.0. The issue is reported as an improper limitation of a pathname to a restricted directory (path traversal), enabling traversal of the file system. Some sources describe t...
WordPress SureDash plugin <= 1.8.0 - Arbitrary File Deletion vulnerability
Arbitrary File Deletion vulnerability discovered by hhhai in WordPress Plugin SureDash versions = 1.8.0...
CVE-2025-54685 WordPress SureDash Plugin <= 1.1.0 - Sensitive Data Exposure Vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in Brainstorm Force SureDash suredash allows Retrieve Embedded Sensitive Data.This issue affects SureDash: from n/a through = 1.1.0...
CVE-2025-54685 WordPress SureDash Plugin <= 1.1.0 - Sensitive Data Exposure Vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in Brainstorm Force SureDash allows Retrieve Embedded Sensitive Data. This issue affects SureDash: from n/a through 1.1.0...