VYPR

Wpscan

by WordPress

CVEs (2)

  • CVE-2024-6695CriJul 31, 2024
    risk 0.64cvss 9.8epss 0.01

    it's possible for an attacker to gain administrative access without having any kind of account on the targeted site and perform unauthorized actions. This is due to improper logic flow on the user registration process.

  • CVE-2023-6042HigJan 8, 2024
    risk 0.49cvss 7.5epss 0.01

    Any unauthenticated user may send e-mail from the site with any title or content to the admin