High 8.2 Unfixed Closed
2025-02-07≤ 1.2.7
CVE-2025-25167
BookPress – For Book Authors
High 7.1 Unfixed Closed
2025-02-07≤ 1.2.7
CVE-2025-25168
Medium 6.3 Closed
2024-10-16< 1.2.3
Freemius SDK <= 2.4.2 - Missing Authorization Checks
N/A Unfixed Closed
2023-07-18≤ 1.2.4
WordPress BookPress – For Book Authors Plugin <= 1.2.4 is vulnerable to Cross Site Scripting (XSS)
N/A Closed
2022-03-04< 1.2.3
Freemius SDK <= 2.4.2 - Missing Authorization Checks
N/A Closed
2022-02-28< 1.2.3
WordPress BookPress – For Book Authors plugin < 1.2.3 - Sensitive Information Disclosure vulnerability
N/A Closed
2022-02-28< 1.2.3
WordPress BookPress – For Book Authors plugin < 1.2.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability