Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 45 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-3618 Columns by BestWebSoft <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'columns' Shortcode 'id' Attribute bestweblayoutColumns by BestWebSoft – Additional Columns Plugin for Posts Pages and Widgets Medium 6.4 2026-04-08 06:43:42 Deep Dive
CVE-2026-24598 WordPress Multilanguage by BestWebSoft plugin <= 1.5.2 - Broken Access Control vulnerability bestwebsoftMultilanguage by BestWebSoft Medium 4.3 2026-01-23 14:29:03 Deep Dive
CVE-2025-63056 WordPress Contact Form by BestWebSoft plugin <= 4.3.6 - Broken Access Control vulnerability bestwebsoftContact Form by BestWebSoft Medium 4.3 2025-12-09 14:52:33 Deep Dive
CVE-2025-13383 Job Board by BestWebSoft <= 1.2.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting via $_GET Array Storage bestweblayoutJob Board by BestWebSoft Medium 6.1 2025-11-25 07:28:19 Deep Dive
CVE-2025-9950 Error Log Viewer by BestWebSoft <= 1.1.6 - Authenticated (Administrator+) Arbitrary File Read bestwebsoftError Log Viewer by BestWebSoft Medium 4.9 2025-10-11 09:28:40 Deep Dive
CVE-2025-39527 WordPress Rating by BestWebSoft plugin <= 1.7 - PHP Object Injection Vulnerability bestweblayoutRating by BestWebSoft High 8.8 2025-04-17 15:46:55 Deep Dive
CVE-2025-31099 WordPress Slider by BestWebSoft plugin <= 1.1.0 - SQL Injection Vulnerability bestweblayoutSlider by BestWebSoft High 7.6 2025-03-28 09:39:51 Deep Dive
CVE-2024-13908 SMTP by BestWebSoft <= 1.1.9 - Authenticated (Administrator+) Arbitrary File Upload bestweblayoutSMTP by BestWebSoft High 7.2 2025-03-08 07:04:55 Deep Dive
CVE-2024-13906 Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress <= 4.7.3 - Authenticated (Administrator+) PHP Object Injection bestwebsoftGallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress High 7.2 2025-03-07 07:22:24 Deep Dive
CVE-2025-24628 WordPress reCaptcha by BestWebSoft Plugin <= 1.78 - Captcha Bypass vulnerability bestwebsoftGoogle Captcha 中危 -2025-01-27 14:22:16 Deep Dive
CVE-2024-51786 WordPress Realty by BestWebSoft plugin <= 1.1.5 - Cross Site Scripting (XSS) vulnerability bestweblayoutRealty by BestWebSoft Medium 6.5 2024-11-09 08:27:16 Deep Dive
CVE-2024-3112 Quotes and Tips < 1.45 - Admin+ Arbitrary File Upload UnknownQuotes and Tips by BestWebSoft 中危 -2024-07-12 06:00:06 Deep Dive
CVE-2024-35678 WordPress Contact Form to DB by BestWebSoft plugin <= 1.7.2 - SQL Injection vulnerability BestWebSoftContact Form to DB by BestWebSoft High 8.5 2024-06-08 15:57:33 Deep Dive
CVE-2024-31295 WordPress Captcha by BestWebSoft plugin <= 5.2.0 - Captcha Bypass vulnerability BestWebSoftCaptcha by BestWebSoft Medium 5.3 2024-05-17 08:19:49 Deep Dive
CVE-2024-2198 Contact Form by BestWebSoft <= 4.2.8 - Reflected Cross-Site Scripting via cntctfrm_contact_address bestwebsoftContact Form by BestWebSoft – Advanced WP Contact Form Builder for WordPress Medium 6.1 2024-04-09 18:58:51 Deep Dive
CVE-2024-2200 Contact Form by BestWebSoft <= 4.2.8 - Reflected Cross-Site Scripting via cntctfrm_contact_subject bestwebsoftContact Form by BestWebSoft – Advanced WP Contact Form Builder for WordPress Medium 6.1 2024-04-09 18:58:39 Deep Dive
CVE-2024-30439 WordPress Limit Attempts by BestWebSoft plugin <= 1.2.9 - Reflected Cross Site Scripting (XSS) vulnerability BestWebSoftLimit Attempts by BestWebSoft High 7.1 2024-03-29 17:19:12 Deep Dive
CVE-2023-6821 Error Log Viewer < 1.1.3 - Directory Listing to Sensitive Data Exposure UnknownError Log Viewer by BestWebSoft 中危 -2024-03-18 19:05:50 Deep Dive
CVE-2023-6250 BestWebSoft's Like & Share < 2.74 - Unauthenticated Password Protected Post Read UnknownBestWebSoft's Like & Share--2023-12-26 18:33:11 Deep Dive
CVE-2014-125109 BestWebSoft Portfolio Plugin bws_menu.php bws_add_menu_render cross site scripting BestWebSoftPortfolio Plugin Low 3.5 2023-12-26 15:00:05 Deep Dive