Premmerce Redirect Manager
Approved changes feed: RSS · Atom
cpe:2.3:a:premmerce:premmerce_redirect_manager:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Premmerce (64f7c5bf-ded2-5e5c-a241-c9bafb4032e2) |
|---|---|
| Product | Premmerce Redirect Manager (8b312782-6aad-52e2-bbc9-eacfe1357bde) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-32541 |
vulnerable | 2026-06-03 15:20:43.196745 |
WordPress Premmerce Redirect Manager plugin <= 1.0.12 - Broken Access Control vulnerability
MEDIUM (6.5)
Missing Authorization vulnerability in Premmerce Premmerce Redirect Manager premmerce-redirect-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Premmerce Redirect Manager: from n/a through <= 1.0.12.
Published: 2026-03-25T16:15:11.437Z
Updated: 2026-04-29T09:52:01.501Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-23789 |
vulnerable | 2026-06-03 14:49:28.657432 |
WordPress Premmerce Redirect Manager Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)
MEDIUM (5.9)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Premmerce Premmerce Redirect Manager plugin <= 1.0.9 versions.
Published: 2023-05-10T07:28:14.629Z
Updated: 2026-04-28T16:08:01.772Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-23787 |
vulnerable | 2026-06-03 14:49:28.652421 |
WordPress Premmerce Redirect Manager Plugin <= 1.0.9 is vulnerable to Cross Site Request Forgery (CSRF)
MEDIUM (4.3)
Cross-Site Request Forgery (CSRF) vulnerability in Premmerce Premmerce Redirect Manager plugin <= 1.0.9 versions.
Published: 2023-07-10T15:39:12.983Z
Updated: 2026-04-28T16:08:01.731Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-4974 |
vulnerable | 2026-06-03 14:48:44.324593 |
Freemius SDK <= 2.4.2 - Missing Authorization Checks
MEDIUM (6.3)
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
Published: 2024-10-16T06:43:30.014Z
Updated: 2026-04-08T16:46:54.861Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.