VYPR

Frontend Admin

by WordPress

Source repositories

CVEs (3)

  • CVE-2025-14736CriJan 9, 2026
    risk 0.57cvss 9.8epss 0.01

    The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.28.29. This is due to insufficient validation of user-supplied role values in the 'validate_value', 'pre_update_value', and 'get_fields_display'…

  • CVE-2026-3328HigMar 26, 2026
    risk 0.47cvss 7.2epss 0.01

    The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to PHP Object Injection via deserialization of the 'post_content' of admin_form posts in all versions up to, and including, 3.28.31. This is due to the use of WordPress's `maybe_unserialize()` function without…

  • CVE-2024-11721Dec 14, 2024
    risk 0.00cvss epss 0.01

    The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.24.5. This is due to insufficient controls on the user role select field when utilizing the 'Role' field in a form. This makes it possible for…