Vulnerabilities > Apppresser
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-13 | CVE-2025-1561 | Cross-site Scripting vulnerability in Apppresser The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' parameter in all versions up to, and including, 4.4.10 due to insufficient input sanitization and output escaping. | 6.1 |
| 2024-10-16 | CVE-2024-9305 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Apppresser The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.4.4. | 9.8 |
| 2024-04-15 | CVE-2024-31374 | Unspecified vulnerability in Apppresser Cross-Site Request Forgery (CSRF) vulnerability in AppPresser Team AppPresser.This issue affects AppPresser: from n/a through 4.3.0. | 8.8 |
| 2024-04-12 | CVE-2024-31268 | Unspecified vulnerability in Apppresser Cross-Site Request Forgery (CSRF) vulnerability in AppPresser Team AppPresser.This issue affects AppPresser: from n/a through 4.3.0. | 8.8 |
| 2023-11-18 | CVE-2023-4214 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Apppresser The AppPresser plugin for WordPress is vulnerable to unauthorized password resets in versions up to, and including 4.2.5. | 9.8 |