Auctionplugin Ultimate Wordpress Auction Plugin — known CVE vulnerabilities
Every CVE whose affected-product data names Auctionplugin Ultimate Wordpress Auction Plugin, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2025-4204 — CVSS 7.5 (high): The Ultimate Auction Pro plugin for WordPress is vulnerable to SQL Injection via the ‘auction_id’ parameter in all versions up to, and…