VYPR

Ts Demo Importer

by WordPress

Source repositories

CVEs (3)

  • CVE-2025-13334HigDec 12, 2025
    risk 0.53cvss 8.1epss 0.00

    The Blaze Demo Importer plugin for WordPress is vulnerable to unauthorized database resets and file deletion due to a missing capability check on the "blaze_demo_importer_install_demo" function in all versions up to, and including, 1.0.13. This makes it possible for…

  • CVE-2025-62919MedOct 27, 2025
    risk 0.35cvss 5.4epss 0.00

    Missing Authorization vulnerability in themeshopy TS Demo Importer ts-demo-importer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TS Demo Importer: from n/a through <= 0.1.3.

  • CVE-2025-4954Jun 10, 2025
    risk 0.00cvss epss 0.01

    The Axle Demo Importer WordPress plugin through 1.0.3 does not validate files to be uploaded, which could allow authenticated users (author and above) to upload arbitrary files such as PHP on the server