Wpshuffle Subscribe To Download vulnerabilities
3 known vulnerabilities affecting wpshuffle/subscribe_to_download.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-60224P2CRITICALCVSS 9.8≤ 2.0.92025-10-22
CVE-2025-60224 [CRITICAL] CWE-502 CVE-2025-60224: Deserialization of Untrusted Data vulnerability in wpshuffle Subscribe to Download subscribe-to-down
Deserialization of Untrusted Data vulnerability in wpshuffle Subscribe to Download subscribe-to-download allows Object Injection.This issue affects Subscribe to Download: from n/a through <= 2.0.9.
nvd
CVE-2025-60150P3HIGHCVSS 7.5≤ 2.0.92025-09-26
CVE-2025-60150 [HIGH] CWE-98 CVE-2025-60150: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusio
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpshuffle Subscribe to Download subscribe-to-download allows PHP Local File Inclusion.This issue affects Subscribe to Download: from n/a through <= 2.0.9.
nvd
CVE-2025-60148P4MEDIUMCVSS 4.3≤ 2.0.92025-09-26
CVE-2025-60148 [MEDIUM] CWE-862 CVE-2025-60148: Missing Authorization vulnerability in wpshuffle Subscribe to Download subscribe-to-download allows
Missing Authorization vulnerability in wpshuffle Subscribe to Download subscribe-to-download allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Subscribe to Download: from n/a through <= 2.0.9.
nvd