5.3
CVE-2025-66130 - WordPress WP Views Counter plugin <= 2.1.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in etruel WP Views Counter wpecounter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Views Counter: from n/a through <= 2.1.2.
5.3
CVE-2025-66129 - WordPress Pochipp plugin <= 1.18.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in wppochipp Pochipp pochipp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pochipp: from n/a through <= 1.18.0.
5.3
CVE-2025-66128 - WordPress Sendinblue for WooCommerce plugin <= 4.0.49 - Broken Access Control vulnerability
Missing Authorization vulnerability in Brevo Sendinblue for WooCommerce woocommerce-sendinblue-newsletter-subscription allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sendinblue for WooCommerce: from n/a through <= 4.0.49.
5.4
CVE-2025-66127 - WordPress Essential Real Estate plugin <= 5.2.9 - Broken Access Control vulnerability
Missing Authorization vulnerability in g5theme Essential Real Estate essential-real-estate allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Essential Real Estate: from n/a through <= 5.2.9.
5.3
CVE-2025-66126 - WordPress Fix Media Library plugin <= 2.0 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in wowpress.host Fix Media Library wow-media-library-fix allows Retrieve Embedded Sensitive Data.This issue affects Fix Media Library: from n/a through <= 2.0.
5.3
CVE-2025-66125 - WordPress Ultimate Auction plugin <= 4.3.2 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in Nitesh Ultimate Auction ultimate-auction allows Retrieve Embedded Sensitive Data.This issue affects Ultimate Auction : from n/a through <= 4.3.2.
5.3
CVE-2025-66124 - WordPress Leaky Paywall plugin <= 4.22.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in ZEEN101 Leaky Paywall leaky-paywall allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Leaky Paywall: from n/a through <= 4.22.6.
5.4
CVE-2025-66122 - WordPress Stylish Price List plugin <= 7.2.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in Design Stylish Price List stylish-price-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stylish Price List: from n/a through <= 7.2.2.
5.3
CVE-2025-66121 - WordPress SiteGround Security plugin <= 1.5.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in SiteGround SiteGround Security sg-security allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SiteGround Security: from n/a through <= 1.5.8.
5.3
CVE-2025-66120 - WordPress CatFolders plugin <= 2.5.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in CatFolders CatFolders catfolders allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CatFolders: from n/a through <= 2.5.3.