VYPR

Blaze Demo Importer

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-13334HigDec 12, 2025
    risk 0.53cvss 8.1epss 0.00

    The Blaze Demo Importer plugin for WordPress is vulnerable to unauthorized database resets and file deletion due to a missing capability check on the "blaze_demo_importer_install_demo" function in all versions up to, and including, 1.0.13. This makes it possible for…

  • CVE-2025-8446MedSep 16, 2025
    risk 0.21cvss 4.3epss 0.00

    The Blaze Demo Importer plugin for WordPress is vulnerable to unauthorized limited plugin install due to a missing capability check on the 'blaze_demo_importer_install_plugin' function in all versions up to, and including, 1.0.12. This makes it possible for authenticated…