Numex

**Name of the Vulnerable Software and Affected Versions** Yoast SEO versions prior to 26.6 **Description** An Insecure Direct Object Reference issue exists due to insufficient authorization checks in the Meta Search REST API endpoint. This flaw fails to verify post ownership, allowing authenticated attackers with Contributor-level access or higher to read sensitive SEO metadata from any post on the site, including private posts, drafts, and posts owned by other users, by manipulating the `post id` parameter. **Recommendations** Update to a version newer than 26.5. Restrict access to the Meta Search REST API endpoint to minimize the risk of unauthorized metadata access.

**Name of the Vulnerable Software and Affected Versions** Syarif Mobile App Editor versions n/a through 1.3.1 **Description** The software is susceptible to an unrestricted file upload issue that permits the uploading of a web shell to a web server. This allows attackers to potentially achieve remote code execution. The issue stems from a lack of validation during the file upload process. **Recommendations** Versions prior to 1.3.1 should be updated.

**Name of the Vulnerable Software and Affected Versions** WBW Currency Switcher for WooCommerce versions through 2.2.5 **Description** An authorization issue exists in WBW Currency Switcher for WooCommerce. The issue involves incorrectly configured access control security levels, potentially allowing unauthorized access. **Recommendations** Update WBW Currency Switcher for WooCommerce to a version later than 2.2.5.

**Name of the Vulnerable Software and Affected Versions** Shahjada Download Manager Addons for Elementor versions through 1.3.0 **Description** The software contains a flaw due to improper neutralization of special elements within SQL commands, leading to a Blind SQL Injection condition. The vulnerability exists in Download Manager Addons for Elementor wpdm-elementor. Exploitation of this issue could allow an attacker to potentially manipulate database queries. **Recommendations** Update to a version later than 1.3.0.

**Name of the Vulnerable Software and Affected Versions** Authorsy versions through 1.0.6 **Description** An authorization bypass exists in Authorsy due to incorrectly configured access control security levels. This allows exploitation through a user-controlled key. **Recommendations** Update Authorsy to a version later than 1.0.6.

**Name of the Vulnerable Software and Affected Versions** Aruba HiSpeed Cache versions through 3.0.4 **Description** An authorization issue exists in Aruba HiSpeed Cache, allowing exploitation of incorrectly configured access control security levels. **Recommendations** Update Aruba HiSpeed Cache to a version later than 3.0.4.

**Name of the Vulnerable Software and Affected Versions** Owl Carousel WP versions through 2.2.2 **Description** The software contains a flaw due to improper neutralization of input during web page generation, which allows for Stored Cross-site Scripting (XSS). This means that malicious scripts can be injected into web pages and executed by unsuspecting users. The affected component is susceptible to exploitation through crafted input. **Recommendations** Update Owl Carousel WP to a version later than 2.2.2.

**Name of the Vulnerable Software and Affected Versions** Yoco Payments plugin for WordPress versions through 3.8.8 **Description** The Yoco Payments plugin for WordPress is susceptible to a Path Traversal issue. This allows unauthenticated attackers to read arbitrary files on the server, potentially exposing sensitive information. The issue occurs through the `file` parameter. **Recommendations** Update the Yoco Payments plugin to a version newer than 3.8.8.

**Name of the Vulnerable Software and Affected Versions** Recorp AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One versions through 1.1.7 **Description** The Recorp AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One software contains a missing authorization issue due to incorrectly configured access control security levels. This allows for exploitation of the system. **Recommendations** Update to a version later than 1.1.7.

**Name of the Vulnerable Software and Affected Versions** CedCommerce WP Advanced PDF versions through 1.1.7 **Description** An authorization issue exists in CedCommerce WP Advanced PDF, allowing exploitation due to incorrectly configured access control security levels. **Recommendations** Update CedCommerce WP Advanced PDF to a version later than 1.1.7.

**Name of the Vulnerable Software and Affected Versions** Youzify versions through 1.3.5 **Description** The software contains a Server-Side Request Forgery (SSRF) flaw. This allows for Server Side Request Forgery. **Recommendations** Update Youzify to a version later than 1.3.5.

**Name of the Vulnerable Software and Affected Versions** Bit Assist versions through 1.5.11 **Description** An authorization issue exists in Bit Apps Bit Assist. The problem involves incorrectly configured access control security levels, potentially allowing unauthorized access. **Recommendations** Update Bit Assist to a version later than 1.5.11.

**Name of the Vulnerable Software and Affected Versions** Trustindex Widgets for Social Photo Feed versions through 1.7.7 **Description** An authorization issue exists in Trustindex Widgets for Social Photo Feed. The issue involves incorrectly configured access control security levels, potentially allowing unauthorized access. **Recommendations** Update Trustindex Widgets for Social Photo Feed to a version later than 1.7.7.

**Name of the Vulnerable Software and Affected Versions** bdthemes Prime Slider – Addons For Elementor versions through 4.0.10 **Description** A Server-Side Request Forgery (SSRF) issue exists in bdthemes Prime Slider – Addons For Elementor. This allows for Server Side Request Forgery. The issue is present in bdthemes-prime-slider-lite. **Recommendations** Update bdthemes Prime Slider – Addons For Elementor to a version later than 4.0.10.

**Name of the Vulnerable Software and Affected Versions** Hippoo Mobile App for WooCommerce plugin for WordPress versions up to and including 1.7.1 **Description** The software is susceptible to unauthorized file writing due to a missing authorization check. The REST API endpoint `/wp-json/hippoo/v1/wc/token/save callback/{token id}` is registered with `permission callback => ' return true'`, which permits unauthenticated access. This allows attackers to write arbitrary JSON content to the server's publicly accessible upload directory via the vulnerable endpoint. The `token id` is a variable within the API endpoint. **Recommendations** Update the Hippoo Mobile App for WooCommerce plugin for WordPress to a version later than 1.7.1.

**Name of the Vulnerable Software and Affected Versions** wModes – Catalog Mode, Product Pricing, Enquiry Forms & Promotions plugin for WordPress versions up to and including 1.2.2 **Description** The plugin does not properly verify user authorization when accessing sensitive information through an AJAX endpoint. This allows authenticated attackers with subscriber-level access or higher to extract sensitive data. This data includes user emails, usernames, roles, capabilities, and WooCommerce data such as products and payment methods. The vulnerable endpoint allows unauthorized access to this information. **Recommendations** Update wModes – Catalog Mode, Product Pricing, Enquiry Forms & Promotions plugin for WordPress to a version later than 1.2.2.

**Name of the Vulnerable Software and Affected Versions** Document Embedder – Embed PDFs, Word, Excel, and Other Files plugin for WordPress versions up to and including 2.0.0 **Description** The Document Embedder plugin for WordPress is susceptible to unauthorized access, modification, and potential data loss. This is caused by insufficient authorization checks within the `bplde save document library`, `bplde get all`, `bplde get single`, and `bplde delete document library` functions. This allows unauthenticated attackers to create, read, update, and delete arbitrary `document library` posts. **Recommendations** Versions prior to and including 2.0.0 should be updated to a newer, fixed version, if available. As a temporary workaround, consider restricting access to the vulnerable functions `bplde save document library`, `bplde get all`, `bplde get single`, and `bplde delete document library` until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Jordy Meow Gallery Custom Links versions through 2.2.5 **Description** The software contains a flaw due to improper handling of input during the creation of web pages, leading to a Cross-site Scripting (XSS) issue. This specific instance allows for Stored XSS, meaning malicious scripts can be stored and executed by other users. The issue impacts Gallery Custom Links. **Recommendations** Update Jordy Meow Gallery Custom Links to a version later than 2.2.5.