VYPR

WCFM Marketplace – Multivendor Marketplace for WooCommerce

by WordPress

CVEs (1)

  • CVE-2025-3438MedMay 2, 2025
    risk 0.42cvss 6.5epss 0.00

    The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to limited privilege escalation in all versions up to, and including, 4.17.4. This is due to a lack of restriction of role when registering. This makes it possible for…