Wedevs Wp Project Manager

7 CVEs affecting Wedevs Wp Project Manager. Latest disclosed: 2025-12-30. Critical: 0, High: 2.

Top CVEs affecting Wedevs Wp Project Manager
CVESeverityScorePublishedSummary
CVE-2023-34383High8.52023-11-03Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in weDevs WP Project Manager wedevs-project-manager allows S…
CVE-2024-12015High7.72024-12-02The 'Project Manager' WordPress Plugin is affected by an authenticated SQL injection vulnerability in the 'orderby' parameter in the '/pm/v2/activites' route.
CVE-2025-68040Medium6.52025-12-30Insertion of Sensitive Information Into Sent Data vulnerability in weDevs WP Project Manager wedevs-project-manager allows Retrieve Embedded Sensitive Data.Thi…
CVE-2023-40003Medium6.52024-12-13Missing Authorization vulnerability in weDevs WP Project Manager wedevs-project-manager allows Exploiting Incorrectly Configured Access Control Security Levels…
CVE-2025-22649Medium5.92025-03-27Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in weDevs WP Project Manager wedevs-project-manager allows S…
CVE-2025-58269Medium5.32025-09-22Use of Hard-coded Credentials vulnerability in weDevs WP Project Manager wedevs-project-manager allows Retrieve Embedded Sensitive Data.This issue affects WP P…
CVE-2025-32280Medium4.32025-04-04Cross-Site Request Forgery (CSRF) vulnerability in weDevs WP Project Manager wedevs-project-manager allows Cross Site Request Forgery.This issue affects WP Pro…