Aguilatechnologies Wp Customer Area
4 CVEs affecting Aguilatechnologies Wp Customer Area. Latest disclosed: 2026-04-17. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-3464 | High | 8.8 | 2026-04-17 | The WP Customer Area plugin for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path validation in the 'ajax_attach_file'… |
CVE-2025-60201 | High | 7.5 | 2025-11-06 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in aguilatechnologies WP Customer Area cu… |
CVE-2024-0665 | Medium | 6.1 | 2024-01-24 | The WP Customer Area plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions up to, and including, 8.2.1 d… |
CVE-2025-49982 | Medium | 4.3 | 2025-06-20 | Missing Authorization vulnerability in aguilatechnologies WP Customer Area customer-area allows Exploiting Incorrectly Configured Access Control Security Level… |