VYPR

Admin And Site Enhancements

by WordPress

CVEs (7)

  • CVE-2025-24648HigFeb 4, 2025
    risk 0.49cvss 7.5epss 0.00

    Incorrect Privilege Assignment vulnerability in Bowo Admin and Site Enhancements (ASE) admin-site-enhancements allows Privilege Escalation.This issue affects Admin and Site Enhancements (ASE): from n/a through <= 7.6.2.1.

  • CVE-2024-43333HigFeb 3, 2025
    risk 0.49cvss 7.5epss 0.00

    Incorrect Privilege Assignment vulnerability in NotFound Admin and Site Enhancements (ASE) Pro allows Privilege Escalation. This issue affects Admin and Site Enhancements (ASE) Pro: from n/a through 7.6.2.1.

  • CVE-2024-13688MedApr 28, 2025
    risk 0.34cvss 5.3epss 0.00

    The Admin and Site Enhancements (ASE) WordPress plugin before 7.6.10 uses a hardcoded password in its Password Protection feature, allowing attacker to bypass the protection offered via a crafted request

  • CVE-2025-9487MedSep 22, 2025
    risk 0.31cvss 4.7epss 0.00

    The Admin and Site Enhancements (ASE) WordPress plugin before 7.9.8 does not sanitise SVG files when uploaded via xmlrpc.php when such uploads are enabled, which could allow users to upload a malicious SVG containing XSS payloads

  • CVE-2025-24653MedJan 27, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in NotFound Admin and Site Enhancements (ASE) Pro allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Admin and Site Enhancements (ASE) Pro: from n/a through 7.6.1.1.

  • CVE-2025-24649MedJan 24, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in Bowo Admin and Site Enhancements (ASE) admin-site-enhancements allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Admin and Site Enhancements (ASE): from n/a through <= 7.6.2.

  • CVE-2025-64255LowDec 9, 2025
    risk 0.18cvss 2.7epss 0.00

    Missing Authorization vulnerability in Bowo Admin and Site Enhancements (ASE) admin-site-enhancements allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Admin and Site Enhancements (ASE): from n/a through <= 8.0.8.