CVE-2026-24570
- EPSS 0.04%
- Veröffentlicht 23.01.2026 14:28:56
- Zuletzt bearbeitet 15.04.2026 00:35:42
Missing Authorization vulnerability in WisdmLabs Edwiser Bridge edwiser-bridge allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Edwiser Bridge: from n/a through <= 4.3.2.
CVE-2025-24593
- EPSS 0.26%
- Veröffentlicht 27.01.2025 15:15:14
- Zuletzt bearbeitet 01.04.2026 17:17:51
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WisdmLabs Edwiser Bridge edwiser-bridge allows Reflected XSS.This issue affects Edwiser Bridge: from n/a through <= 3.0.8.
CVE-2024-4186
- EPSS 0.52%
- Veröffentlicht 07.05.2024 06:15:09
- Zuletzt bearbeitet 15.04.2026 00:35:42
The Edwiser Bridge plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.0.5. This is due to the 'eb_user_email_verification_key' default value is empty, and the not empty check is missing in the 'eb_user_ema...
CVE-2024-31260
- EPSS 0.21%
- Veröffentlicht 07.04.2024 18:15:10
- Zuletzt bearbeitet 07.02.2025 19:04:19
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WisdmLabs Edwiser Bridge.This issue affects Edwiser Bridge: from n/a through 3.0.2.