Known Vulnerabilities for products from Melapress

Listed below are 8 of the newest known vulnerabilities associated with the vendor "Melapress".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2025-39565 json		Not Provided	2025-04-16	2026-04-23
CVE-2025-3702 json	Missing Authorization vulnerability in Melapress Melapress File Monitor website-file-changes-monitor allows Exploiting Incorr...	Not Provided	2025-07-03	2026-04-23
CVE-2024-35650 json	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Mela...	Not Provided	2024-06-10	2026-04-23
CVE-2024-32568 json	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Melapress WP 2FA wp-2fa...	Not Provided	2024-04-18	2026-04-23
CVE-2024-2018 json	The WP Activity Log Premium plugin for WordPress is vulnerable to SQL Injection via the entry->roles parameter in all version...	Not Provided	2024-04-09	2026-04-08
CVE-2023-50905 json	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Melapress WP Activity L...	Not Provided	2024-02-29	2026-04-28
CVE-2023-6520 json	The WP 2FA – Two-factor authentication for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in al...	Not Provided	2024-01-11	2026-04-08
CVE-2022-44595 json	Improper Authentication vulnerability in Melapress WP 2FA allows Authentication Bypass.This issue affects WP 2FA: from n/a th...	Not Provided	2024-03-21	2026-04-28