Post Expirator

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:publishpress:post_expirator:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorPublishpress (a1f39896-cd62-5150-ad54-4c4eea4abcee)
ProductPost Expirator (82893383-fee2-5b19-a5e8-cefad2e151bf)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/publishpress/publishpress-future purl2cpe 2026-06-01 10:17:57.537796

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2026-39482 vulnerable 2026-06-08 08:01:16.581861 WordPress Post Expirator plugin <= 4.9.4 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PublishPress Post Expirator post-expirator allows DOM-Based XSS.This issue affects Post Expirator: from n/a through <= 4.9.4.
Published: 2026-04-08T08:30:10.093Z
Updated: 2026-04-29T09:52:01.909Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-69361 vulnerable 2026-06-08 07:43:13.500567 WordPress Post Expirator plugin <= 4.9.3 - Broken Access Control vulnerability
MEDIUM (4.3)
Missing Authorization vulnerability in PublishPress Post Expirator post-expirator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Post Expirator: from n/a through <= 4.9.3.
Published: 2026-01-06T16:36:42.054Z
Updated: 2026-04-28T20:55:11.695Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.