VYPR

Aeropage Sync for Airtable

by Aeropage

CVEs (2)

  • CVE-2025-3914HigApr 26, 2025
    risk 0.58cvss 8.8epss 0.11

    The Aeropage Sync for Airtable plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'aeropage_media_downloader' function in all versions up to, and including, 3.2.0. This makes it possible for authenticated attackers, with…

  • CVE-2025-3915MedApr 26, 2025
    risk 0.21cvss 4.3epss 0.00

    The Aeropage Sync for Airtable plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'aeropageDeletePost' function in all versions up to, and including, 3.2.0. This makes it possible for authenticated attackers, with…