Vulnerabilities and security researches forall-push-notification all-push-notification

Feb 05, 2025

CVE, Research URL: CVE-2025-25073
Home page URL: Security reports for All push notification for WP
Application: All push notification for WP
Date: Feb 07, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vasilis Triantafyllou Easy WP Tiles allows Stored XSS. This issue affects Easy WP Tiles: from n/a through 1.
Affected versions: Min -, max -.
Status: vulnerable

Feb 19, 2025

CVE, Research URL: CVE-2025-25092
Home page URL: Security reports for All push notification for WP
Application: All push notification for WP
Date: Mar 03, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gtlwpdev All push notification for WP allows Reflected XSS. This issue affects All push notification for WP: from n/a through 1.5.3.
Affected versions: Min -, max -.
Status: vulnerable

Apr 11, 2025

CVE, Research URL: CVE-2025-32547
Home page URL: Security reports for All push notification for WP
Application: All push notification for WP
Date: Apr 09, 2025
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in gtlwpdev All push notification for WP allows Blind SQL Injection. This issue affects All push notification for WP: from n/a through 1.5.3.
Affected versions: Min -, max -.
Status: vulnerable

Apr 19, 2025

CVE, Research URL: CVE-2025-32546
Home page URL: Security reports for All push notification for WP
Application: All push notification for WP
Date: Apr 17, 2025
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in gtlwpdev All push notification for WP allows Reflected XSS. This issue affects All push notification for WP: from n/a through 1.5.3.
Affected versions: Min -, max -.
Status: vulnerable