VYPR

Mobile Builder

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-68860CriDec 29, 2025
    risk 0.64cvss 9.8epss 0.00

    Authentication Bypass Using an Alternate Path or Channel vulnerability in Mobile Builder Mobile builder mobile-builder allows Authentication Abuse.This issue affects Mobile builder: from n/a through <= 1.4.2.

  • CVE-2025-13029HigDec 31, 2025
    risk 0.49cvss 7.5epss 0.00

    The Knowband Mobile App Builder WordPress plugin before 3.0.0 does not have authorisation when deleting users via its REST API, allowing unauthenticated attackers to delete arbitrary users.