Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical0

High0

Medium2

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2025-08-18

CVE-2025-5998 - Before Version 1 Plugin

The PPWP – Password Protect Pages WordPress plugin before version 1.9.11 allows to put the site content behind a password authorization, however users with subscriber or greater roles can view content via the REST API.

PLUGIN Before Version 1

CVE-2025-5998

MEDIUM CVSS 6.5 2025-08-14

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2026-01-23

CVE-2025-4302 - Before Version 1 Plugin

The Stop User Enumeration WordPress plugin before version 1.7.3 blocks REST API /wp-json/wp/v2/users/ requests for non-authorized users. However, this can be bypassed by URL-encoding the API path.

PLUGIN Before Version 1

CVE-2025-4302

MEDIUM CVSS 5.3 2025-07-17

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2025-5998 - Before Version 1 Plugin

CVE-2025-4302 - Before Version 1 Plugin

Company Links

Contact Us