VYPR

Wp Walla

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-12589MedNov 11, 2025
    risk 0.40cvss 6.1epss 0.00

    The WP-Walla plugin for WordPress is vulnerable to Cross-Site Request Forgery to Stored Cross-Site Scripting in all versions up to, and including, 0.5.3.5. This is due to missing nonce verification on the settings page and insufficient input sanitization and output escaping.…