Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how melapress compares to other vendors in security performance

View Risk Score →

Melapress WP Activity LogWordPress WP Activity Log plugin <= 5.6.3 - Cross Site Scripting (XSS) vulnerability

Risk 46
Severity
6.5
First published (updated )
CVE-2026-45435

Melapress Role EditorMelapress Role Editor <= 1.1.1 - Improper Authorization to Authenticated (Subscriber+) Privilege Escalation via Secondary Role Assignment

Risk 79
Severity
8.8
First published (updated )
CVE-2025-14866

Melapress Login SecurityMelaPress Login Security 2.1.0 - 2.1.1 - Authentication Bypass to Privilege Escalation via get_valid_user_based_on_token Function

Risk 61
Severity
9.8
EPSS
0.17%
First published (updated )
CVE-2025-6895

Melapress File MonitorWordPress Melapress File Monitor plugin < 2.2.0 - Broken Access Control vulnerability

Risk 25
Severity
5.4
First published (updated )
CVE-2025-3702

Melapress File MonitorWebsite File Changes < 2.1.1 - Authenticated SQL Injection

Risk 34
Severity
5.4
First published (updated )
CVE-2024-9879
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Melapress File MonitorWebsite File Changes < 2.1.0 - Admin+ Authenticated SQL Injection

Risk 20
Severity
4.1
First published (updated )
CVE-2024-10009

Melapress MelaPress Login SecurityWordPress MelaPress Login Security plugin <= 2.1.0 - PHP Object Injection Vulnerability

Risk 49
Severity
7.2
EPSS
0.06%
First published (updated )
CVE-2025-39565

Melapress Melapress Login Security WordpressMelaPress Login Security and MelaPress Login Security Premium 2.1.0 - Missing Authorization to Unauthenticated Arbitrary User Deletion

Risk 54
Severity
8.2
First published (updated )
CVE-2025-2876

WP Activity Log WP Activity LogWP Activity Log 5.3.2 - Insecure deserialization

Risk 86
Severity
9.8
First published (updated )
CVE-2025-0767

WP Activity Log WP Activity LogWP Activity Log <= 5.2.2 - Unauthenticated Stored Cross-Site Scripting

Risk 44
Severity
7.2
First published (updated )
CVE-2025-0924
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Melapress Wp Activity Log WordpressWP Activity Log <= 5.2.1 - Unauthenticated Stored Cross-Site Scripting via User_id Parameter

Risk 44
Severity
7.2
First published (updated )
CVE-2024-10793

Melapress Wp 2fa WordpressWordPress WP 2FA plugin <= 2.6.3 - Sensitive Data Exposure via Log File vulnerability

Risk 43
Severity
7.5
First published (updated )
CVE-2022-44587

Melapress Melapress Login Security WordpressWordPress MelaPress Login Security plugin <= 1.3.0 - Remote File Inclusion vulnerability

Risk 66
Severity
7.2
First published (updated )
CVE-2024-35650

Melapress WP 2FAWordPress WP 2FA plugin <= 2.6.2 - Reflected Cross Site Scripting (XSS) vulnerability

Risk 27
Severity
7.1
EPSS
0.04%
First published (updated )
CVE-2024-32568

Melapress Wp Activity Log WordpressWP Activity Log Premium <= 4.6.4 - Authenticated (Subscriber+) SQL Injection

Risk 79
Severity
8.8
First published (updated )
CVE-2024-2018
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Melapress Wp 2fa WordpressWordPress WP2FA plugin <= 2.2.0 - Broken Authentication vulnerability

Risk 27
Severity
5.3
First published (updated )
CVE-2022-44595

Melapress WP Activity LogWordPress WP Activity Log plugin <= 4.6.1 - Cross Site Scripting (XSS) vulnerability

Risk 50
Severity
7.1
First published (updated )
CVE-2023-50905

Melapress Wp 2fa WordpressWP 2FA – Two-factor authentication for WordPress <= 2.5.0 - Cross-Site Request Forgery

Risk 16
Severity
4.3
EPSS
0.07%
First published (updated )
CVE-2023-6520

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203