Vulnerabilities in SecuPress
5 resultsCVE-2024-1504MEDIUMSecuPress Free — WordPress Security <= 2.2.5.1 - Cross-Site Request Forgery to Banned IP AddressEPSS 0.3%CVE-2025-30907MEDIUMWordPress SecuPress Free plugin <= 2.2.5.3 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-43228MEDIUMWordPress SecuPress Free plugin <= 2.2.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-3452MEDIUMSecuPress Free <= 2.3.9 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin InstallationEPSS 0.2%CVE-2024-9019MEDIUMSecuPress Free — WordPress Security <= 2.2.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via secupress_check_ban_ips_form ShortcodeEPSS 0.2%