5 matches found
EUVD-2025-22502
Malicious code in bioql PyPI...
CVE-2025-7822 WP Wallcreeper <= 1.6.1 - Missing Authorization to Authenticated (Susbcriber+) Cache Enable/Disable
The WP Wallcreeper plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the adminnotices hook in all versions up to, and including, 1.6.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to enable...
CVE-2025-7822
WP Wallcreeper (WordPress plugin)
CVE-2025-7822 WP Wallcreeper <= 1.6.1 - Missing Authorization to Authenticated (Susbcriber+) Cache Enable/Disable
The WP Wallcreeper plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the adminnotices hook in all versions up to, and including, 1.6.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to enable...
PT-2025-30657 · WordPress · Wp Wallcreeper
Name of the Vulnerable Software and Affected Versions: WP Wallcreeper plugin for WordPress versions up to and including 1.6.1 Description: The WP Wallcreeper plugin for WordPress is susceptible to unauthorized data modification because of a missing capability check on the admin notices hook. This...