Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 59 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-5130 Tmall Demo uploadProductImage unrestricted upload TmallDemo Medium 4.7 2025-05-24 20:00:11 Deep Dive
CVE-2025-32496 WordPress Ultra Demo Importer plugin <= 1.0.5 - CSRF to RCE vulnerability UncodethemesUltra Demo Importer Critical 9.6 2025-04-09 16:09:46 Deep Dive
CVE-2024-13637 Demo Awesome <= 1.0.3 - Missing Authorization to Authenticated (Subscriber+) Plugin Activation romik84Demo Awesome Medium 6.5 2025-04-02 09:21:45 Deep Dive
CVE-2025-25134 WordPress Theme Demo Bar Plugin <= 1.6.3 - Reflected Cross Site Scripting (XSS) vulnerability zenverseTheme Demo Bar High 7.1 2025-03-26 14:24:18 Deep Dive
CVE-2025-23581 WordPress Demo User DZS plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability digitalzoomstudioDemo User DZS Medium 6.5 2025-02-03 14:22:42 Deep Dive
CVE-2024-9698 Crafthemes Demo Import <= 3.3 - Authenticated (Admin+) Arbitrary File Upload in process_uploaded_files aruphashCrafthemes Demo Import High 7.2 2024-12-14 04:23:48 Deep Dive
CVE-2024-37207 WordPress Demo Awesome plugin <= 1.0.2 - Broken Access Control vulnerability Theme4PressDemo Awesome Medium 5.4 2024-11-01 14:18:34 Deep Dive
CVE-2024-50481 WordPress Bstone Demo Importer plugin <= 1.0.1 - Privilege Escalation vulnerability stackthemesBstone Demo Importer High 8.8 2024-10-29 08:36:36 Deep Dive
CVE-2020-36837 ThemeGrill Demo Importer 1.3.4 - 1.6.1 - Authorization Bypass to Site Reset themegrillThemeGrill Demo Importer Critical 9.9 2024-10-16 06:43:36 Deep Dive
CVE-2024-9071 Easy Demo Importer – A Modern One-Click Demo Import Solution <= 1.1.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload sigmadevsEasy Demo Importer – A Modern One-Click Demo Import Solution Medium 6.4 2024-10-04 09:30:41 Deep Dive
CVE-2024-9172 Demo Importer Plus <= 2.0.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload kraftpluginsDemo Importer Plus Medium 6.4 2024-10-02 07:35:27 Deep Dive
CVE-2024-38749 WordPress Olive One Click Demo Import plugin <= 1.1.2 - Sensitive Data Exposure vulnerability Olive ThemesOlive One Click Demo Import Medium 5.3 2024-08-13 10:22:40 Deep Dive
CVE-2024-37206 WordPress Demo Awesome plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability Theme4PressDemo Awesome High 7.1 2024-07-22 09:31:37 Deep Dive
CVE-2024-6120 Sparkle Demo Importer <= 1.4.7 - Missing Authorization to Authorized(Subscriber+) Post/Pages/Attachements Deletion and Demo Data Import sparklewpthemesSparkle Demo Importer Medium 6.5 2024-06-21 23:33:48 Deep Dive
CVE-2024-34800 WordPress Crafthemes Demo Import plugin <= 3.3 - Arbitrary plugin Installation vulnerability CrafthemesCrafthemes Demo Import High 7.6 2024-06-10 15:41:20 Deep Dive
CVE-2024-32715 WordPress Olive One Click Demo Import plugin <= 1.1.1 - Arbitrary File Download vulnerability Olive ThemesOlive One Click Demo Import 中危 -2024-06-09 16:53:52 Deep Dive
CVE-2024-31290 WordPress Demo My WordPress plugin <= 1.0.9.1 - Unauthenticated Privilege Escalation vulnerability CodeRevolutionDemo My WordPress Critical 9.8 2024-05-17 08:54:37 Deep Dive
CVE-2024-34433 WordPress One Click Demo Import plugin <=3.2.0 - PHP Object Injection vulnerability OCDIOne Click Demo Import Medium 4.4 2024-05-09 12:00:35 Deep Dive
CVE-2024-33679 WordPress FameTheme Demo Importer plugin <= 1.1.5 - Cross Site Request Forgery (CSRF) vulnerability FameThemesFameTheme Demo Importer Medium 4.3 2024-04-26 10:40:54 Deep Dive
CVE-2024-2702 WordPress Olive One Click Demo Import plugin <= 1.1.1 - Broken Access Control vulnerability Olive ThemesOlive One Click Demo Import High 8.2 2024-03-20 09:36:45 Deep Dive