Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical0

High0

Medium1

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2025-07-03

CVE-2025-4654 - Soumettre Fr Plugin

The Soumettre.fr plugin for WordPress is vulnerable to unauthorized access and modification of data due to a improper authorization checks on the make_signature function in all versions up to, and including, 2.1.5. This makes it possible for unauthenticated attackers to create/edit/delete Soumettre posts. This vulnerability affects only installations where the soumettre account is not connected (i.e. API key is not installed)

PLUGIN Soumettre Fr

CVE-2025-4654

LOW CVSS 3.7 2025-07-02

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-10-04

CVE-2024-8675 - Soumettre Fr Plugin

The Soumettre.fr plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the soumettre_disconnect_gateway function in all versions up to, and including, 2.1.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to disconnect the gateway and delete the API key.

PLUGIN Soumettre Fr

CVE-2024-8675

MEDIUM CVSS 4.3 2024-10-01

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2025-4654 - Soumettre Fr Plugin

CVE-2024-8675 - Soumettre Fr Plugin

Company Links

Contact Us