GCVE - cpe:2.3:a:wpwax:legal_pages:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:wpwax:legal_pages:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Wpwax (`29e8d6fe-c9fa-59bf-8dd1-08817559bd7a`)
Product	Legal Pages (`59daffe0-9ee9-5db0-a87e-c0ddf863ff6f`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-66077`	vulnerable	2026-06-03 15:09:40.858777	WordPress Legal Pages plugin <= 1.4.6 - Broken Access Control vulnerability MEDIUM (5.3) Missing Authorization vulnerability in wpWax Legal Pages legal-pages allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Legal Pages: from n/a through <= 1.4.6. Published: 2025-11-21T12:29:57.063Z Updated: 2026-04-28T16:14:16.240Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/legal-pages/vulnerability/wordpress-legal-pages-plugin-1-4-6-broken-access-control-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-48242`	vulnerable	2026-06-03 15:01:34.300587	WordPress Legal Pages plugin <= 1.4.5 - Broken Access Control Vulnerability MEDIUM (6.5) Missing Authorization vulnerability in wpWax Legal Pages legal-pages allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Legal Pages: from n/a through <= 1.4.5. Published: 2025-05-19T14:44:53.592Z Updated: 2026-04-28T16:12:53.628Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/legal-pages/vulnerability/wordpress-legal-pages-1-4-5-broken-access-control-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-32451`	vulnerable	2026-06-03 14:55:41.064572	WordPress Legal Pages plugin <= 1.4.2 - Cross Site Request Forgery (CSRF) vulnerability MEDIUM (4.3) Cross-Site Request Forgery (CSRF) vulnerability in wpWax Legal Pages.This issue affects Legal Pages: from n/a through 1.4.2. Published: 2024-04-15T07:51:31.898Z Updated: 2026-04-28T16:09:35.947Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/legal-pages/wordpress-legal-pages-plugin-1-4-2-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-50886`	vulnerable	2026-06-03 14:53:31.660604	WordPress Legal Pages plugin <= 1.3.7 - CSRF + Broken Access Control vulnerability MEDIUM (4.3) Cross-Site Request Forgery (CSRF), Incorrect Authorization vulnerability in wpWax Legal Pages.This issue affects Legal Pages: from n/a through 1.3.7. Published: 2024-03-15T14:14:58.686Z Updated: 2026-04-28T16:08:59.967Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/legal-pages/wordpress-legal-pages-plugin-1-3-7-broken-access-control-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.