Projectopia – Project Management Tool

Vulnerabilities 9Slug projectopia-coreLatest version 5.1.25.2WordPress.org →

Minimum safe version

5.1.20

Update to 5.1.20 or later to address 7 fixable vulnerabilities

Latest available5.1.25.2 ✓⚠ 2 vulnerabilities have no fix

N/A Unfixed

2025-12-02≤ 5.1.22

Projectopia <= 5.1.22 - Authenticated (Custom+) Insecure Direct Object Reference

Wordfence CVE

Medium 5.3

2025-12-05< 5.1.20

CVE-2025-12876

CVE Wordfence

N/A

2025-05-19< 5.1.18

CVE-2025-48257

CVE Wordfence

High 8.1

2025-04-30< 5.1.17

Projectopia – WordPress Project Management <= 5.1.16 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Option Deletion

Wordfence CVE

Critical 9.8 Unfixed

2025-04-17≤ 5.1.24

WordPress Projectopia plugin <= 5.1.24 - Privilege Escalation vulnerability

CVE EUVD Wordfence

High 8.8

2024-12-13< 5.1.8

CVE-2024-54336

CVE Wordfence Patchstack

N/A

2023-07-18< 5.1.5

WordPress Projectopia – WordPress Project Management Plugin Plugin <= 5.1.4 is vulnerable to Cross Site Scripting (XSS)

Patchstack WPScan CVE

N/A

2022-02-28< 5.0.7

WordPress Projectopia – WordPress Project Management Plugin plugin < 5.0.7 - Sensitive Information Disclosure vulnerability

Patchstack

N/A

2022-02-28< 5.0.7

WordPress Projectopia – WordPress Project Management Plugin plugin < 5.0.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack