Gtlwpdev All Push Notification For Wp
4 CVEs affecting Gtlwpdev All Push Notification For Wp. Latest disclosed: 2026-02-04. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-32547 | High | 8.2 | 2025-04-09 | Cross-Site Request Forgery (CSRF) vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects Al… |
CVE-2025-32546 | High | 7.1 | 2025-04-17 | Cross-Site Request Forgery (CSRF) vulnerability in gtlwpdev All push notification for WP all-push-notification allows Reflected XSS.This issue affects All push… |
CVE-2025-25092 | High | 7.1 | 2025-03-03 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gtlwpdev All push notification for WP all-push-notificati… |
CVE-2026-0816 | Medium | 4.9 | 2026-02-04 | The All push notification for WP plugin for WordPress is vulnerable to time-based SQL Injection via the 'delete_id' parameter in all versions up to, and includ… |