VYPR

WP Page Permalink Extension

by WordPress

CVEs (1)

  • CVE-2025-14172MedJan 9, 2026
    risk 0.42cvss 6.5epss 0.00

    The WP Page Permalink Extension plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.5.4. This is due to missing authorization checks on the `cwpp_trigger_flush_rewrite_rules` function hooked to…