| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-1331 | Team Members < 5.3.2 - Author+ Stored XSS | Unknown | Team Members | 中危 | - | 2024-03-18 15:15:26 | Deep Dive |
| CVE-2015-10130 | WordPress Plugin Team Circle Image Slider With Lightbox 安全漏洞 | nik00726 | Team Circle Image Slider With Lightbox | Medium | 5.3 | 2024-03-13 02:34:52 | Deep Dive |
| CVE-2024-24798 | WordPress Debug Plugin <= 1.10 is vulnerable to Cross Site Request Forgery (CSRF) | SoniNow Team | Debug | Medium | 4.3 | 2024-02-21 07:34:06 | Deep Dive |
| CVE-2024-24796 | WordPress Event Manager for WooCommerce Plugin <= 4.1.1 is vulnerable to PHP Object Injection | MagePeople Team | Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin | High | 8.2 | 2024-02-12 07:47:08 | Deep Dive |
| CVE-2023-47526 | WordPress Chartify Plugin <= 2.0.6 is vulnerable to Cross Site Scripting (XSS) | Chart Builder Team | Chartify – WordPress Chart Plugin | Medium | 5.9 | 2024-02-12 06:53:18 | Deep Dive |
| CVE-2024-21875 | DoS attack when broadcasting billboard messages | Badge.team | Hacker Hotel Badge 2024 | Medium | 6.5 | 2024-02-11 08:37:10 | Deep Dive |
| CVE-2024-24712 | WordPress Heateor Social Login Plugin <= 1.1.30 is vulnerable to Cross Site Scripting (XSS) | Team Heateor | Heateor Social Login WordPress | Medium | 6.5 | 2024-02-10 08:05:30 | Deep Dive |
| CVE-2023-51514 | WordPress CBX Bookmark & Favorite Plugin <= 1.7.13 is vulnerable to Cross Site Scripting (XSS) | Codeboxr Team | CBX Bookmark & Favorite | Medium | 6.5 | 2024-02-01 11:17:20 | Deep Dive |
| CVE-2023-51691 | WordPress wpDiscuz Plugin <= 7.6.12 is vulnerable to Cross Site Scripting (XSS) | gVectors Team | Comments – wpDiscuz | Medium | 5.9 | 2024-02-01 10:57:47 | Deep Dive |
| CVE-2023-52193 | WordPress Page Builder: Live Composer Plugin <= 1.5.23 is vulnerable to Cross Site Scripting (XSS) | Live Composer Team | Page Builder: Live Composer | Medium | 6.5 | 2024-02-01 09:49:11 | Deep Dive |
| CVE-2022-45083 | WordPress ProfilePress Plugin <= 4.3.2 is vulnerable to PHP Object Injection | ProfilePress Membership Team | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress | Medium | 6.6 | 2024-01-19 14:37:19 | Deep Dive |
| CVE-2022-40700 | Server Side Request Forgery (SSRF) vulnerability affecting multiple WordPress plugins | Montonio | Montonio for WooCommerce | High | 8.2 | 2024-01-19 14:30:11 | Deep Dive |
| CVE-2023-51406 | WordPress FastDup Plugin <= 2.1.7 is vulnerable to Sensitive Data Exposure | Ninja Team | FastDup – Fastest WordPress Migration & Duplicator | Medium | 5.3 | 2024-01-08 20:41:36 | Deep Dive |
| CVE-2023-52206 | WordPress Page Builder: Live Composer Plugin <= 1.5.25 is vulnerable to PHP Object Injection | Live Composer Team | Page Builder: Live Composer | High | 7.7 | 2024-01-08 19:32:07 | Deep Dive |
| CVE-2023-51538 | WordPress Awesome Support Plugin <= 6.1.5 is vulnerable to Cross Site Request Forgery (CSRF) | Awesome Support Team | Awesome Support – WordPress HelpDesk & Support Plugin | Medium | 4.3 | 2024-01-05 09:47:19 | Deep Dive |
| CVE-2023-51423 | WordPress WebinarIgnition Plugin <= 3.05.0 is vulnerable to SQL Injection | Saleswonder Team | Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition | Critical | 9.3 | 2023-12-31 17:52:40 | Deep Dive |
| CVE-2023-51422 | WordPress WebinarIgnition Plugin <= 3.05.0 is vulnerable to PHP Object Injection | Saleswonder Team | Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition | Critical | 9.9 | 2023-12-29 12:59:32 | Deep Dive |
| CVE-2023-50889 | WordPress Beaver Builder Plugin <= 2.7.2 is vulnerable to Cross Site Scripting (XSS) | The Beaver Builder Team | Beaver Builder – WordPress Page Builder | Medium | 6.5 | 2023-12-29 11:21:56 | Deep Dive |
| CVE-2022-47599 | WordPress File Manager Plugin <= 5.2.7 is vulnerable to PHP Object Injection | File Manager by Bit Form Team | File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager | Medium | 5.5 | 2023-12-20 17:42:54 | Deep Dive |
| CVE-2023-46311 | WordPress wpDiscuz Plugin <= 7.6.3 is vulnerable to Insecure Direct Object References (IDOR) | gVectors Team | Comments – wpDiscuz | Low | 2.7 | 2023-12-20 13:32:29 | Deep Dive |