Vulnerabilidades en ERA404
7 resultadosCVE-2025-32255MEDIUMWordPress StaffList plugin <= 3.2.7 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2025-32232MEDIUMWordPress StaffList plugin <= 3.2.7 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-52734HIGHWordPress CropRefine Plugin <= 1.2.1 - Cross Site Scripting (XSS) VulnerabilityEPSS 0.3%CVE-2024-13749MEDIUMStaffList <= 3.2.3 - Cross-Site Request Forgery to Reflected Cross-Site ScriptingEPSS 0.3%CVE-2025-23845HIGHWordPress ImageMeta Plugin <= 1.1.2 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-12185MEDIUMStaffList <= 3.2.6 - Authenticated (Admin+) Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-57918HIGHWordPress LinkedInclude Plugin <= 3.0.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%