Nosleep

**Name of the Vulnerable Software and Affected Versions** Breadcrumb NavXT versions prior to 7.5.1 **Description** The Breadcrumb NavXT plugin for WordPress has an authorization bypass issue. This occurs because the Gutenberg block renderer trusts the `post id` parameter without proper verification within the includes/blocks/build/breadcrumb-trail/render.php file. An attacker can manipulate the `post id` parameter to enumerate and view breadcrumb trails for draft or private posts, potentially revealing post titles and hierarchy that should not be accessible. The vulnerable parameter is `post id`. **Recommendations** Update Breadcrumb NavXT to version 7.5.1 or later.

**Name of the Vulnerable Software and Affected Versions** Breeze - WordPress Cache Plugin versions through 2.2.21 **Description** The Breeze - WordPress Cache Plugin is affected by an issue allowing unauthorized cache clearing. The REST API endpoint `/wp-json/breeze/v1/clear-all-cache` is registered without proper permission checks (`permission callback => ' return true'`) and authentication is disabled by default when the API is enabled. This allows unauthenticated attackers to clear all site caches (page cache, Varnish, and Cloudflare) by sending a POST request to the API endpoint, provided the administrator has enabled the API integration feature. **Recommendations** Versions prior to 2.2.21 should be updated.

**Name of the Vulnerable Software and Affected Versions** Checkout Manager for WooCommerce versions prior to 7.8.6 **Description** The Checkout Field Manager (Checkout Manager) for WooCommerce plugin for WordPress has an authorization issue. The plugin does not properly verify user authorization to delete attachments and has flawed guest order ownership validation. This allows unauthenticated attackers to delete attachments linked to guest orders by using the `wooccm upload` nonce and the attachment ID. **Recommendations** Update to version 7.8.6 or later.

**Name of the Vulnerable Software and Affected Versions** All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic versions prior to 4.9.3 **Description** The plugin is susceptible to unauthorized data access because of a missing capability check on the `/aioseo/v1/ai/credits` REST endpoint. Authenticated attackers with Contributor-level access or higher can disclose the global AI access token. **Recommendations** Update to version 4.9.3 or later.

**Nome do Software Vulnerável e Versões Afetadas** Versões do Advanced Ads anteriores a 2.0.15 **Descrição** O plugin Advanced Ads para WordPress está vulnerável a Execução Remota de Código através do parâmetro de shortcode `change-ad content`. Isso permite que atacantes autenticados com permissões de nível de editor ou superiores executem código no servidor. O parâmetro vulnerável é `change-ad content`. **Recomendações** Atualize o Advanced Ads para a versão 2.0.15 ou posterior.

**Nome do Software Vulnerável e Versões Afetadas** MailerLite – Signup forms (official) versões até e incluindo a 1.7.16 **Descrição** O plugin MailerLite – Signup forms (official) para WordPress está suscetível a Cross-Site Scripting Armazenado através dos parâmetros `form description` e `success message`. A sanitização de entrada e o escape de saída insuficientes permitem que atacantes autenticados com acesso de administrador ou superior injetem scripts web arbitrários nas páginas. Esses scripts serão executados quando um usuário acessar a página afetada. **Recomendações** Versões anteriores à 1.7.16 devem ser atualizadas.