CVE-2024-44020

UNKNOWN 0.0

WordPress WP Free SSL plugin <= 1.2.6 - Broken Access Control vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Missing Authorization vulnerability in prasadkirpekar WP Free SSL – Free SSL Certificate for WordPress and force HTTPS wp-free-ssl.This issue affects WP Free SSL – Free SSL Certificate for WordPress and force HTTPS: from n/a through <= 1.2.7.

CWE	CWE-862
Vendor	prasadkirpekar
Product	wp free ssl – free ssl certificate for wordpress and force https
Published	Nov 1, 2024
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for prasadkirpekar wp free ssl – free ssl certificate for wordpress and force https

Be the first to know when new unknown vulnerabilities affecting prasadkirpekar wp free ssl – free ssl certificate for wordpress and force https are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

prasadkirpekar / WP Free SSL – Free SSL Certificate for WordPress and force HTTPS

0 ≤ 1.2.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/wp-free-ssl/vulnerability/wordpress-wp-free-ssl-plugin-1-2-6-broken-access-control-vulnerability?_s_id=cve

Credits

Abdi Pranata | Patchstack Bug Bounty Program