CVE-2025-69014

CVE-2025-69014 : Youzify (WordPress plugin) is affected up to version 1.3.5 by a Server-Side Request Forgery (SSRF). The entry indicates the issue is exploitable via network access, requires HIGH privileges, and involves no user interaction, with confidentiality impact rated High. The Wordfence s...

WordPress plugin Youzify 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

WordPress Youzify plugin <= 1.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Peter Thaleikis in WordPress Plugin Youzify versions = 1.3.0...

WordPress Youzify Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Youzify Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8987 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e02642daa02f Credits Peter Thaleikis Required privilege...

VulnCheck KEV: CVE-2022-1950

The Youzify WordPress plugin before 1.2.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to an unauthenticated SQL injection...

WordPress Youzify plugin <= 1.0.6 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by Phu Tran in WordPress Youzify plugin versions = 1.0.6. Solution Update the WordPress Youzify plugin to the latest available version at least 1.0.7...