VYPR

Wp Simple Firewall

by WordPress

Source repositories

CVEs (2)

  • CVE-2024-4344MedJun 2, 2024
    risk 0.28cvss 4.3epss 0.00

    The Shield Security – Smart Bot Blocking & Intrusion Prevention Security plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 19.1.13. This is due to missing or incorrect nonce validation on the exec function. This makes it…

  • CVE-2025-15370MedJan 16, 2026
    risk 0.21cvss 4.3epss 0.00

    The Shield: Blocks Bots, Protects Users, and Prevents Security Breaches plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 21.0.9 via the MfaGoogleAuthToggle class due to missing validation on a user controlled key. This…