VYPR

Online Accessibility

by WordPress

Source repositories

CVEs (4)

  • CVE-2026-3773MedApr 16, 2026
    risk 0.42cvss 6.5epss 0.00

    The Accessibility Suite by Ability, Inc plugin for WordPress is vulnerable to SQL Injection via the 'scan_id' parameter in all versions up to, and including, 4.20. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the…

  • CVE-2025-32215MedApr 10, 2025
    risk 0.42cvss 6.5epss 0.00

    Unrestricted Upload of File with Dangerous Type vulnerability in Ability, Inc Accessibility Suite online-accessibility allows Stored XSS.This issue affects Accessibility Suite: from n/a through <= 4.18.

  • CVE-2025-22698MedFeb 14, 2025
    risk 0.41cvss 6.3epss 0.00

    Missing Authorization vulnerability in Ability, Inc Accessibility Suite online-accessibility allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accessibility Suite: from n/a through <= 4.18.

  • CVE-2025-30636MedJun 6, 2025
    risk 0.35cvss 5.4epss 0.00

    Missing Authorization vulnerability in Ability, Inc Accessibility Suite online-accessibility allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accessibility Suite: from n/a through <= 4.19.