Cmsmasters Cmsmasters Content Composer
4 CVEs affecting Cmsmasters Cmsmasters Content Composer. Latest disclosed: 2026-02-19. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-4414 | High | 8.1 | 2025-07-04 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in cmsmasters CMSMasters Content Composer… |
CVE-2026-25326 | High | 7.5 | 2026-02-19 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in cmsmasters CMSMasters Content Composer… |
CVE-2026-23547 | High | 7.1 | 2026-02-19 | Missing Authorization vulnerability in cmsmasters CMSMasters Content Composer cmsmasters-content-composer allows Exploiting Incorrectly Configured Access Contr… |
CVE-2024-7963 | Medium | 6.4 | 2024-10-09 | The CMSMasters Content Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's multiple shortcodes in all versions up to, a… |