VYPR

Simple Tags

by WordPress

Source repositories

CVEs (3)

  • CVE-2025-13922MedDec 6, 2025
    risk 0.42cvss 6.5epss 0.00

    The Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'existing_terms_orderby' parameter in the AI preview AJAX endpoint in all versions up to, and including, 3.40.1. This is due to…

  • CVE-2024-2830MedApr 4, 2024
    risk 0.35cvss 6.4epss 0.00

    The WordPress Tag and Category Manager – AI Autotagger plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'st_tag_cloud' shortcode in all versions up to, and including, 3.13.0 due to insufficient input sanitization and output escaping on user…

  • CVE-2025-55710MedAug 14, 2025
    risk 0.21cvss 4.3epss 0.00

    Insertion of Sensitive Information Into Sent Data vulnerability in Steve Burge TaxoPress simple-tags allows Retrieve Embedded Sensitive Data.This issue affects TaxoPress: from n/a through <= 3.37.2.