[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f88tXtU8NGgJUtgClrBDJHNHLCfnlXIUsxSU0FcAOx9s":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2025-28993","content-no-cache-unauthenticated-arbitrary-function-call","Content No Cache \u003C= 0.1.4 - Unauthenticated Arbitrary Function Call","The Content No Cache | Serve uncached partial content even when you add it to a page that is fully cached plugin for WordPress is vulnerable to Arbitrary Function Calls in all versions up to, and including, 0.1.4. This makes it possible for unauthenticated attackers to call arbitrary functions and execute code in a limited context.","content-no-cache",null,"\u003C=0.1.4","0.1.5","high",7.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L","Improper Control of Generation of Code ('Code Injection')","2025-06-23 00:00:00","2025-07-03 12:29:26",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fd97ed290-b887-4fa5-866c-e7af9b29b517?source=api-prod",11]