cleantalk
Vulnerabilities and Security Researches

SecuPress Free — WordPress Security, bec7d275dc66a21d2b0257e900e50f83e62446c1

CVE, Research URL

bec7d275dc66a21d2b0257e900e50f83e62446c1

Home page URL

Security reports for SecuPress Free — WordPress Security

Application

SecuPress Free — WordPress Security

Published on
Mar 22, 2021
Research Description
SecuPress Free — WordPress Security [secupress] < 2.0 SecuPress Free and SecuPress Pro <= 1.4.12 - Unauthenticated Arbitrary IP Ban The SecuPress Free and SecuPress Pro plugins for WordPress is vulnerable to unauthenticated arbitrary IP bans in versions up to, and including, 1.4.12. This makes it possible for unauthenticated remote attackers to ban any IP address from accessing the site.
Affected versions
Min -, max 2.0.
Status
vulnerable
Previous vulnerability researches
SecuPress Free — WordPress Security (CVE-2025-30907) , Apr 03, 2025
SecuPress Free — WordPress Security (CVE-2024-1504) , Jun 07, 2024
SecuPress Free — WordPress Security (bec7d275dc66a21d2b0257e900e50f83e62446c1) , Jun 07, 2024
SecuPress Free — WordPress Security (CVE-2025-3452) , Apr 30, 2025
SecuPress Free — WordPress Security (CVE-2024-43228) , Mar 15, 2025
New vulnerability
Admin and Site Enhancements (ASE) (CVE-2024-13688) , Apr 30, 2025
WordPress Simple Shopping Cart (CVE-2025-3529) , Apr 30, 2025
SecuPress Free — WordPress Security (CVE-2025-3452) , Apr 30, 2025
Gutenverse &#8211; Gutenberg Blocks &#8211; Page Builder for Site Editor (CVE-2025-2893) , Apr 30, 2025
My Tickets (CVE-2025-3761) , Apr 29, 2025