VYPR

Cloak Front End Email

by WordPress

CVEs (2)

  • CVE-2025-26968HigApr 17, 2025
    risk 0.49cvss 7.5epss 0.00

    Missing Authorization vulnerability in webbernaut Cloak Front End Email allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Cloak Front End Email: from n/a through 1.9.5.

  • CVE-2023-0150MedFeb 6, 2023
    risk 0.35cvss 5.4epss 0.01

    The Cloak Front End Email WordPress plugin before 1.9.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site…