cleantalk
Vulnerabilities and Security Researches

DirectoryPress – Business Directory And Classified Ad Listing, 1a3ba1e97c4c47e90cd5db48ca23753082a24463

CVE, Research URL

1a3ba1e97c4c47e90cd5db48ca23753082a24463

Home page URL

Security reports for DirectoryPress – Business Directory And Classified Ad Listing

Application

DirectoryPress – Business Directory And Classified Ad Listing

Published on
Jul 12, 2023
Research Description
DirectoryPress &#8211; Business Directory And Classified Ad Listing [directorypress] < 3.6.3 (closed) WordPress DirectoryPress Plugin <= 3.6.2 is vulnerable to Broken Access Control Update the WordPress DirectoryPress plugin to the latest available version (at least 3.6.3). Abdi Pranata discovered and reported this Broken Access Control vulnerability in WordPress DirectoryPress Plugin. This vulnerability has been fixed in version 3.6.3.
Affected versions
Min -, max 3.6.3.
Status
vulnerable
Previous vulnerability researches
DirectoryPress Frontend (CVE-2024-10581) , Feb 16, 2025
DirectoryPress &#8211; Business Directory And Classified Ad Listing (CVE-2024-49633) , Jan 09, 2025
DirectoryPress &#8211; Business Directory And Classified Ad Listing (CVE-2023-37967) , Jun 10, 2024
DirectoryPress &#8211; Business Directory And Classified Ad Listing (CVE-2024-10584) , Dec 25, 2024
DirectoryPress &#8211; Business Directory And Classified Ad Listing (CVE-2024-38755) , Jul 15, 2024
New vulnerability
PropertyHive (CVE-2025-39577) , Apr 18, 2025
WP-BusinessDirectory &#8211; Business directory plugin for WordPress (CVE-2025-32630) , Apr 18, 2025
WordPress WP-Advanced-Search (CVE-2025-39538) , Apr 18, 2025
Most And Least Read Posts Widget (CVE-2025-39549) , Apr 18, 2025
Forminator &#8211; Contact Form, Payment Form &amp; Custom Form Builder (CVE-2025-3487) , Apr 18, 2025