VYPR

Cleanup – Directory Listing & Classifieds WordPress Plugin

by WordPress

CVEs (2)

  • CVE-2025-24563HigJan 31, 2025
    risk 0.46cvss 7.1epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themeglow Cleanup – Directory Listing & Classifieds WordPress Plugin cleanup-light allows Reflected XSS.This issue affects Cleanup – Directory Listing & Classifieds…

  • CVE-2025-12577MedDec 6, 2025
    risk 0.28cvss 4.3epss 0.00

    The Listar – Directory Listing & Classifieds WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the '/wp-json/listar/v1/place/save' REST API endpoint in all versions up to, and including, 3.0.0. This…