Known Vulnerabilities for OnOffice For WP-Websites by Onofficeweb
Listed below are 3 of the newest known vulnerabilities associated with "OnOffice For WP-Websites" by "Onofficeweb".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-32127 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in onOffice GmbH onOffice ... | Not Provided | 2025-04-04 | 2026-04-01 |
| CVE-2025-30958 json | Missing Authorization vulnerability in onOffice GmbH onOffice for WP-Websites onoffice-for-wp-websites allows Exploiting Inco... | Not Provided | 2025-06-06 | 2026-04-01 |
| CVE-2025-10045 json | The onOffice for WP-Websites plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter in all versions up... | Not Provided | 2025-10-15 | 2026-04-08 |