cleantalk
Vulnerabilities and Security Researches

WP Performance Pack, CVE-2025-28938

CVE, Research URL

CVE-2025-28938

Home page URL

Security reports for WP Performance Pack

Application

WP Performance Pack

Published on
Mar 12, 2025
Research Description
Missing Authorization vulnerability in Bjoern WP Performance Pack allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Performance Pack: from n/a through 2.5.3.
Affected versions
Min -, max 2.5.3.
Status
vulnerable
Previous vulnerability researches
Qubely – Advanced Gutenberg Blocks (CVE-2024-9601) , Feb 19, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2024-13228) , Mar 11, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2025-26767) , Feb 18, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2021-24916) , Jun 07, 2024
Qubely – Advanced Gutenberg Blocks (CVE-2021-25013) , Jun 07, 2024
New vulnerability
WP Last Modified (CVE-2025-28907) , Mar 13, 2025
Lunar – Sell photos online (CVE-2025-28936) , Mar 13, 2025
Skrill Official (CVE-2025-28876) , Mar 13, 2025
WordPress Report Brute Force Attacks and Login Protection ReportAttacks Plugins (CVE-2025-2250) , Mar 13, 2025
All-in-One WP Migration (CVE-2024-10942) , Mar 13, 2025