VYPR

Responsive Plus

by WordPress

CVEs (5)

  • CVE-2025-15488MedMar 26, 2026
    risk 0.42cvss 6.5epss 0.00

    The Responsive Plus WordPress plugin before 3.4.3 is vulnerable to arbitrary shortcode execution due to the software allowing unauthenticated users to execute the update_responsive_woo_free_shipping_left_shortcode AJAX action that does not properly validate the…

  • CVE-2025-48335MedJun 6, 2025
    risk 0.35cvss 5.4epss 0.00

    Missing Authorization vulnerability in CyberChimps Responsive Plus responsive-add-ons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Responsive Plus: from n/a through <= 3.2.0.

  • CVE-2025-47486MedMay 7, 2025
    risk 0.34cvss 5.3epss 0.00

    Missing Authorization vulnerability in CyberChimps Responsive Plus responsive-add-ons allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Responsive Plus: from n/a through <= 3.1.9.

  • CVE-2025-49856MedJun 17, 2025
    risk 0.28cvss 4.3epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in CyberChimps Responsive Plus responsive-add-ons allows Cross Site Request Forgery.This issue affects Responsive Plus: from n/a through <= 3.2.2.

  • CVE-2024-13834MedFeb 15, 2025
    risk 0.28cvss 5.4epss 0.00

    The Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.1.4 via the 'remote_request' function. This makes it possible for…