CVE-2025-69184
- EPSS 0.05%
- Veröffentlicht 22.01.2026 16:52:29
- Zuletzt bearbeitet 27.01.2026 20:16:14
Missing Authorization vulnerability in e-plugins Institutions Directory institutions-directory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Institutions Directory: from n/a through <= 1.3.4.
CVE-2025-69182
- EPSS 0.05%
- Veröffentlicht 22.01.2026 16:52:28
- Zuletzt bearbeitet 27.01.2026 22:15:54
Incorrect Privilege Assignment vulnerability in e-plugins Institutions Directory institutions-directory allows Privilege Escalation.This issue affects Institutions Directory: from n/a through <= 1.3.4.
CVE-2025-68058
- EPSS 0.05%
- Veröffentlicht 22.01.2026 16:52:06
- Zuletzt bearbeitet 28.01.2026 17:16:10
Missing Authorization vulnerability in e-plugins Institutions Directory institutions-directory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Institutions Directory: from n/a through <= 1.3..4.
CVE-2025-58638
- EPSS 0.05%
- Veröffentlicht 06.11.2025 15:54:28
- Zuletzt bearbeitet 20.01.2026 15:17:06
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in e-plugins Institutions Directory institutions-directory allows Reflected XSS.This issue affects Institutions Directory: from n/a through <= 1.3.3.
CVE-2020-36666
- EPSS 0.28%
- Veröffentlicht 27.03.2023 16:15:07
- Zuletzt bearbeitet 19.02.2025 20:15:32
The directory-pro WordPress plugin before 1.9.5, final-user-wp-frontend-user-profiles WordPress plugin before 1.2.2, producer-retailer WordPress plugin through TODO, photographer-directory WordPress plugin before 1.0.9, real-estate-pro WordPress plug...