Approved changes feed: RSS · Atom

cpe:2.3:a:alex:content_mask:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAlex (6b000393-eab9-58e9-b387-6fc48033b8f5)
ProductContent Mask (6b664457-8218-5609-b0a5-08e1a85f4740)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-58012 vulnerable 2026-06-08 07:35:16.846773 WordPress Content Mask plugin <= 1.8.5.3 - Insecure Direct Object References (IDOR) vulnerability
LOW (3.8)
Authorization Bypass Through User-Controlled Key vulnerability in Alex Content Mask content-mask allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Content Mask: from n/a through <= 1.8.5.3.
Published: 2025-09-22T18:24:07.388Z
Updated: 2026-04-28T16:13:40.748Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-58011 vulnerable 2026-06-08 07:35:16.846331 WordPress Content Mask plugin <= 1.8.5.2 - Server Side Request Forgery (SSRF) vulnerability
MEDIUM (6.4)
Server-Side Request Forgery (SSRF) vulnerability in Alex Content Mask content-mask allows Server Side Request Forgery.This issue affects Content Mask: from n/a through <= 1.8.5.2.
Published: 2025-09-22T18:24:08.133Z
Updated: 2026-04-28T16:13:40.686Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.