VYPR

One Page Express Companion

by Horea Radu

CVEs (2)

  • CVE-2024-4703MedJun 7, 2024
    risk 0.35cvss 6.4epss 0.00

    The One Page Express Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's one_page_express_contact_form shortcode in all versions up to, and including, 1.6.37 due to insufficient input sanitization and output escaping on user supplied…

  • CVE-2025-62052MedOct 22, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in Horea Radu One Page Express Companion one-page-express-companion.This issue affects One Page Express Companion: from n/a through <= 1.6.43.

VYPR — Vulnerability Intelligence