VYPR

Pressforward

by Pressforward

CVEs (2)

  • CVE-2025-28987MedAug 14, 2025
    risk 0.42cvss 6.4epss 0.00

    Server-Side Request Forgery (SSRF) vulnerability in PressForward PressForward pressforward allows Server Side Request Forgery.This issue affects PressForward: from n/a through <= 5.9.5.

  • CVE-2017-12948MedAug 18, 2017
    risk 0.40cvss 6.1epss 0.01

    Core\Admin\PFTemplater.php in the PressForward plugin 4.3.0 and earlier for WordPress has XSS in the PATH_INFO to wp-admin/admin.php, related to PHP_SELF.