Etruel Wpematico Rss Feed Fetcher
5 CVEs affecting Etruel Wpematico Rss Feed Fetcher. Latest disclosed: 2026-07-02. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-57349 | High | 7.1 | 2026-07-02 | Unauthenticated Cross Site Scripting (XSS) in WPeMatico RSS Feed Fetcher <= 2.8.17 versions. |
CVE-2025-11917 | Medium | 6.4 | 2025-11-05 | The WPeMatico RSS Feed Fetcher plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.8.11 via the wpematico… |
CVE-2025-49922 | Medium | 4.3 | 2025-10-22 | Missing Authorization vulnerability in etruel WPeMatico RSS Feed Fetcher wpematico allows Exploiting Incorrectly Configured Access Control Security Levels.This… |
CVE-2025-57937 | Medium | 4.3 | 2025-09-22 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in etruel WPeMatico RSS Feed Fetcher wpematico allows Retrieve Embedde… |
CVE-2025-8103 | Medium | 4.3 | 2025-07-26 | The WPeMatico RSS Feed Fetcher plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.7. This is due to mis… |