What this page helps you verify fast
This hub clusters every indexed record for avalex – Automatisch sichere Rechtstexte so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.
Review known vulnerability records for the WordPress plugin avalex – Automatisch sichere Rechtstexte (`avalex`), including severity, CVE references, affected versions, and patch status.
Recent tracked CVEs on this page include CVE-2026-25462 and CVE-2023-25059, so operators can jump from disclosure to patch validation without scanning the full feed first.
This hub clusters every indexed record for avalex – Automatisch sichere Rechtstexte so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.
These recent records surface the CVE strings, patch cues, and direct report links most operators need first.
The avalex – Automatisch sichere Rechtstexte plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 3...
The avalex – Automatisch sichere Rechtstexte plugin for WordPress is vulnerable to unauthorized modifcation of data due to a missing capability check on the saveApiKey() function hooked via...
The avalex – Automatisch sichere Rechtstexte plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'avalex_api_key' parameter in versions up to, and including, 3.0.3 due...
Sorted by latest disclosure date so newly published issues surface first.
The avalex – Automatisch sichere Rechtstexte plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 3.1.3. This makes it possible for unauthenticated attackers to perform an unauthorized acti...
The avalex – Automatisch sichere Rechtstexte plugin for WordPress is vulnerable to unauthorized modifcation of data due to a missing capability check on the saveApiKey() function hooked via admin_init in all versions up to, and including, 3.0.8. This makes it possible for unauthe...
The avalex – Automatisch sichere Rechtstexte plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'avalex_api_key' parameter in versions up to, and including, 3.0.3 due to insufficient input sanitization and output escaping. This makes it possible for authent...