4 matches found
CVE-2025-69187
Missing Authorization vulnerability in e-plugins Final User final-user allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Final User: from n/a through = 1.2.5...
PT-2024-32622 · WordPress · Youzify – Buddypress Community
Name of the Vulnerable Software and Affected Versions: The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress versions 1.2.5 and earlier Description: The issue allows authenticated attackers with Contributor-level access and above to perform SQL Injecti...
PT-2024-15860 · WordPress · Backuply
Name of the Vulnerable Software and Affected Versions: The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress versions 1.2.5 and earlier Description: The issue is related to a Denial of Service vulnerability. This vulnerability is due to direct access of the backuply/restore ins.p...
PT-2002-1697 · Pingtel · Pingtel Xpressa
Name of the Vulnerable Software and Affected Versions: Pingtel xpressa SIP-based voice-over-IP phone versions 1.2.5 through 1.2.7.4 Description: The issue allows remote attackers to install Trojan horse applications via DNS spoofing because the phone downloads applications from a web site but...