VYPR

Debug Tool

by WordPress

Source repositories

CVEs (4)

  • CVE-2024-52416CriNov 16, 2024
    risk 0.65cvss 10.0epss 0.00

    Missing Authorization vulnerability in Eugen Bobrowski Debug Tool debug-tool allows Upload a Web Shell to a Web Server.This issue affects Debug Tool: from n/a through <= 2.2.

  • CVE-2024-10586CriNov 9, 2024
    risk 0.64cvss 9.8epss 0.02

    The Debug Tool plugin for WordPress is vulnerable to arbitrary file creation due to a missing capability check on the dbt_pull_image() function and missing file type validation in all versions up to, and including, 2.2. This makes it possible for unauthenticated attackers to to…

  • CVE-2025-23684MedJan 22, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in Eugen Bobrowski Debug Tool debug-tool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Debug Tool: from n/a through <= 2.2.

  • CVE-2024-10588MedNov 9, 2024
    risk 0.28cvss 4.3epss 0.00

    The Debug Tool plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the info() function in all versions up to, and including, 2.2. This makes it possible for authenticated attackers, with subscriber-level access and above, to…