Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 76 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-39520 WordPress weDocs plugin <= 2.1.18 - Broken Access Control vulnerability weDevsweDocs--2026-04-08 08:30:16 Deep Dive
CVE-2026-32485 WordPress WP User Frontend plugin <= 4.2.8 - Broken Access Control vulnerability weDevsWP User Frontend 中危 -2026-03-25 16:14:58 Deep Dive
CVE-2026-24364 WordPress WP User Frontend plugin <= 4.2.5 - Broken Access Control vulnerability weDevsWP User Frontend Medium 6.5 2026-03-25 16:14:32 Deep Dive
CVE-2026-2233 User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration <= 4.2.8 - Missing Authorization to Unauthenticated Arbitrary Post Modification via 'post_id' Parameter wedevsUser Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration Medium 5.3 2026-03-15 02:19:15 Deep Dive
CVE-2026-31917 WordPress WP ERP plugin <= 1.16.10 - SQL Injection vulnerability weDevsWP ERP 中危 -2026-03-13 11:41:54 Deep Dive
CVE-2026-1565 User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration <= 4.2.8 - Authenticated (Author+) Arbitrary File Upload wedevsUser Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration High 8.8 2026-02-26 19:23:10 Deep Dive
CVE-2025-14339 weMail <= 2.0.7 - Missing Authorization to Unauthenticated Form Deletion wedevsweMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce Medium 6.5 2026-02-21 09:28:00 Deep Dive
CVE-2026-24944 WordPress Subscribe2 plugin <= 10.44 - Broken Access Control vulnerability weDevsSubscribe2--2026-02-20 15:47:08 Deep Dive
CVE-2025-13921 weDocs <= 2.1.16 - Missing Authorization to Authenticated (Subscriber+) Documentation Post Update wedevsweDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot Medium 4.3 2026-01-23 13:24:24 Deep Dive
CVE-2025-14348 weMail <= 2.0.7 - Insufficient Authorization via x-wemail-user Header to Sensitive Information Disclosure wedevsweMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce Medium 5.3 2026-01-20 04:35:46 Deep Dive
CVE-2025-14574 weDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot <= 2.1.15 - Unauthenticated Sensitive Information Exposure wedevsweDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot Medium 5.3 2026-01-09 06:34:56 Deep Dive
CVE-2025-68040 WordPress WP Project Manager plugin <= 3.0.1 - Sensitive Data Exposure vulnerability weDevsWP Project Manager Medium 6.5 2025-12-29 23:25:11 Deep Dive
CVE-2025-67546 WordPress WP ERP plugin <= 1.16.6 - Sensitive Data Exposure vulnerability weDevsWP ERP--2025-12-18 07:22:20 Deep Dive
CVE-2025-12809 dokan pro <= 4.1.3 - Missing Authorization to Unauthenticated Sensitive Information Exposure wedevsDokan Pro Medium 5.3 2025-12-16 05:25:21 Deep Dive
CVE-2025-63008 WordPress WP ERP plugin <= 1.16.7 - Broken Access Control vulnerability weDevsWP ERP Medium 5.3 2025-12-09 14:52:27 Deep Dive
CVE-2025-12505 weDocs <= 2.1.14 - Missing Authorization to Settings Update wedevsweDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot Medium 5.4 2025-12-06 04:37:50 Deep Dive
CVE-2025-8994 WP Project Manager <= 2.6.26 - Authenticated (Subscriber+) SQL Injection via 'completed_at_operator' wedevsProject Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker Medium 6.5 2025-11-15 05:45:34 Deep Dive
CVE-2025-58269 WordPress WP Project Manager Plugin <= 2.6.25 - Sensitive Data Exposure Vulnerability weDevsWP Project Manager Medium 5.3 2025-09-22 18:23:16 Deep Dive
CVE-2025-58673 WordPress WP User Frontend Plugin <= 4.1.12 - Content Injection Vulnerability weDevsWP User Frontend Medium 5.4 2025-09-22 18:22:53 Deep Dive
CVE-2025-58672 WordPress WP User Frontend Plugin <= 4.1.12 - Broken Access Control Vulnerability weDevsWP User Frontend Medium 5.4 2025-09-22 18:22:53 Deep Dive