Known Vulnerabilities for products from WPDeveloper
Listed below are 20 of the newest known vulnerabilities associated with the vendor "WPDeveloper".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-39590 | Not Provided | 2025-04-16 | 2026-04-01 | |
| CVE-2025-39589 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPDeveloper Essential Addons for ... | Not Provided | 2025-04-16 | 2026-04-01 |
| CVE-2025-26871 | Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg essential-blocks allows Exploiting Incorrec... | Not Provided | 2025-02-25 | 2026-04-01 |
| CVE-2025-25086 | Not Provided | 2025-03-27 | 2026-04-01 | |
| CVE-2025-24752 | Not Provided | 2025-04-17 | 2026-04-01 | |
| CVE-2025-22696 | Not Provided | 2025-02-04 | 2026-04-01 | |
| CVE-2025-22683 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Notificatio... | Not Provided | 2025-02-03 | 2026-04-01 |
| CVE-2025-22315 | Not Provided | 2025-01-07 | 2026-04-01 | |
| CVE-2024-56063 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential A... | Not Provided | 2024-12-31 | 2026-04-01 |
| CVE-2024-51672 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPDeveloper BetterLinks... | Not Provided | 2024-11-04 | 2026-04-01 |
| CVE-2024-50461 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper EmbedPress ... | Not Provided | 2024-10-28 | 2026-04-01 |
| CVE-2024-47385 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential B... | Not Provided | 2024-10-05 | 2026-04-01 |
| CVE-2024-39649 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential A... | Not Provided | 2024-08-01 | 2026-04-01 |
| CVE-2022-0349 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-03-07 | 2022-03-11 |
| CVE-2022-0320 | The Essential Addons for Elementor WordPress plugin before 5.0.5 does not validate and sanitise some template data before it ... | 9.8 - CRITICAL | 2022-02-01 | 2022-02-04 |
| CVE-2021-24812 | The BetterLinks WordPress plugin before 1.2.6 does not sanitise and escape some of imported link fields, which could lead to ... | 5.4 - MEDIUM | 2021-11-23 | 2021-11-24 |
| CVE-2021-24633 | The Countdown Block WordPress plugin before 1.1.2 does not have authorisation in the eb_write_block_css AJAX action, which al... | 4.3 - MEDIUM | 2021-09-27 | 2021-11-05 |
| CVE-2021-24356 | In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, a lack of capability checks and insufficient nonce ... | 8.8 - HIGH | 2021-06-14 | 2022-12-09 |
| CVE-2021-24355 | In the Simple 301 Redirects by BetterLinks WordPress plugin before 2.0.4, the lack of capability checks and insufficient nonc... | 4.3 - MEDIUM | 2021-06-14 | 2022-12-09 |
| CVE-2021-24354 | A lack of capability checks and insufficient nonce check on the AJAX action in the Simple 301 Redirects by BetterLinks WordPr... | 8.8 - HIGH | 2021-06-14 | 2022-05-03 |
Known software with vulnerabilities from WPDeveloper
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Wpdeveloper | Twitter Cards Meta | 1.0.0 |