Wp Project Manager Security Vulnerabilities and Issues — Wp Project Manager CVE List

Lucene search

WedevsWp Project Manager

3 matches found

CVE•added 2025/04/04 4:15 p.m.•43 views

CVE-2025-32280

Cross-Site Request Forgery (CSRF) vulnerability in weDevs WP Project Manager allows Cross Site Request Forgery. This issue affects WP Project Manager: from n/a through 2.6.22.

8.8CVSS4.7AI score0.00022EPSS

CVE•added 2023/08/31 6:15 a.m.•36 views

CVE-2023-3636

The WP Project Manager plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 2.6.4 due to insufficient restriction on the 'save_users_map_name' function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modi...

8.8CVSS8.5AI score0.0011EPSS

CVE•added 2023/07/01 5:15 a.m.•26 views

CVE-2020-36745

The WP Project Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.4.0. This is due to missing or incorrect nonce validation on the do_updates() function. This makes it possible for unauthenticated attackers to trigger updates via a forged re...

8.8CVSS8.2AI score0.00267EPSS