Workreap

Vulnerabilities 4Slug workreapLatest version 1.0Plugin page →

Minimum safe version

3.3.3

Update to 3.3.3 or later to address 3 fixable vulnerabilities

Latest available1.0 ⚠ 1 vulnerability has no fix
High 8.5 Unfixed
2026-01-08≤ 3.3.6

CVE-2025-22728

CVEWordfence
Critical 9.8
2025-06-12< 3.3.2

Workreap <= 3.3.1 - Authentication Bypass via 'workreap_verify_user_account'

EUVDWordfenceCVE
High 8.8
2025-06-12< 3.3.3

WordPress Workreap (theme's plugin) Plugin <= 3.3.2 is vulnerable to Arbitrary File Upload

PatchstackEUVDWordfenceCVE