cleantalk
Vulnerabilities and Security Researches

StaffList, CVE-2025-32232

CVE, Research URL

CVE-2025-32232

Home page URL

Security reports for StaffList

Application

StaffList

Published on
Apr 04, 2025
Research Description
Missing Authorization vulnerability in ERA404 StaffList allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects StaffList: from n/a through 3.2.6.
Affected versions
Min -, max 3.2.6.
Status
vulnerable
Previous vulnerability researches
WP Cassify (CVE-2025-30771) , Mar 28, 2025
New vulnerability
Easy Contact (CVE-2025-30970) , Apr 08, 2025
DyaPress ERP/CRM (CVE-2025-30582) , Apr 08, 2025
Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links (CVE-2025-1264) , Apr 07, 2025
Advanced All in One Admin Search by WP Spotlight (CVE-2025-32261) , Apr 06, 2025
Free Booking Plugin for Hotels, Restaurant and Car Rental – eaSYNC (CVE-2025-32219) , Apr 06, 2025