cleantalk
Vulnerabilities and Security Researches

WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting, CVE-2025-30896

CVE, Research URL

CVE-2025-30896

Home page URL

Security reports for WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting

Application

WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting

Published on
Mar 27, 2025
Research Description
Missing Authorization vulnerability in weDevs WP ERP allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP ERP: from n/a through 1.13.4.
Affected versions
Min -, max 1.14.0.
Status
vulnerable
Previous vulnerability researches
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2023-47816) , Jun 07, 2024
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2018-21011) , Jun 07, 2024
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2021-24531) , Jun 07, 2024
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2022-47441) , Jun 07, 2024
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2023-4404) , Jun 07, 2024
New vulnerability
AI Search Bar (CVE-2025-31563) , Apr 04, 2025
Ship Per Product (CVE-2025-31773) , Apr 04, 2025
ContentBot AI Writer (ChatGPT, GPT3, GPT4) (CVE-2025-31818) , Apr 04, 2025
Oracle Cards Lite (CVE-2025-30852) , Apr 04, 2025
SCSS WP Editor (CVE-2025-31808) , Apr 04, 2025