| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-44238 | WordPress Remove slug from custom post type Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF) | Joakim Ling | Remove slug from custom post type | Medium | 4.3 | 2023-10-09 09:57:11 | Deep Dive |
| CVE-2023-4792 | Duplicate Post Page Menu & Custom Post Type <= 2.3.1 - Missing Authorization to Post Duplication | inqsys | Duplicate Post Page Menu & Custom Post Type | Medium | 4.3 | 2023-09-07 01:52:17 | Deep Dive |
| CVE-2023-33329 | WordPress Custom Post Type Generator Plugin <= 2.4.2 is vulnerable to Cross Site Scripting (XSS) | Hijiri | Custom Post Type Generator | Medium | 5.9 | 2023-07-18 17:15:07 | Deep Dive |
| CVE-2023-0542 | Custom Post Type List Shortcode <= 1.4.4 - Contributor+ Stored XSS | Unknown | Custom Post Type List Shortcode | 中危 | - | 2023-05-08 13:58:12 | Deep Dive |
| CVE-2023-1623 | Custom Post Type UI < 1.13.5 - Debug Info Sending via CSRF | Unknown | Custom Post Type UI | 中危 | - | 2023-04-24 18:31:01 | Deep Dive |
| CVE-2023-0420 | Custom Post Type and Taxonomy GUI Manager <= 1.1 - Stored XSS via CSRF | Unknown | Custom Post Type and Taxonomy GUI Manager | 中危 | - | 2023-04-24 18:30:49 | Deep Dive |
| CVE-2021-24867 | Backdoored Plugins & Themes from AccessPress Themes | AccessPress Themes | Frontend Post WordPress Plugin – AccessPress Anonymous Post | 超危 | - | 2022-02-21 10:45:39 | Deep Dive |
| CVE-2021-34654 | Custom Post Type Relations <= 1.0 Reflected Cross-Site Scripting | Custom Post Type Relations | Custom Post Type Relations | Medium | 6.1 | 2021-08-16 18:22:29 | Deep Dive |