VYPR

Stop Spammer Registrations Plugin

by WordPress

Source repositories

CVEs (3)

  • CVE-2025-2935MedJun 6, 2025
    risk 0.35cvss 5.4epss 0.00

    The Anti-Spam: Spam Protection | Block Spam Users, Comments, Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2024.7. This is due to missing or incorrect nonce validation in the 'ss_option_maint.php' and…

  • CVE-2023-7065MedMay 4, 2024
    risk 0.35cvss 5.4epss 0.00

    The Stop Spammers Security | Block Spam Users, Comments, Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2024.4. This is due to missing or incorrect nonce validation on the sfs_process AJAX action. This makes it…

  • CVE-2025-14795MedJan 28, 2026
    risk 0.21cvss 4.3epss 0.00

    The Stop Spammers Classic plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2026.1. This is due to missing nonce validation in the ss_addtoallowlist class. This makes it possible for unauthenticated attackers to add arbitrary…