Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 155 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-14937 Frontend Admin by DynamiApps <= 3.28.23 - Unauthenticated Stored Cross-Site Scripting via 'update_field' shabtiFrontend Admin by DynamiApps High 7.2 2026-01-09 07:22:10 Deep Dive
CVE-2025-14736 Frontend Admin by DynamiApps <= 3.28.29 - Unauthenticated Privilege Escalation to Administrator via Role Form Field shabtiFrontend Admin by DynamiApps Critical 9.8 2026-01-09 06:34:52 Deep Dive
CVE-2025-13419 Guest posting / Frontend Posting / Front Editor – WP Front User Submit <= 5.0.0 - Missing Authorization to Unauthenticated Media Deletion aharonyanGuest posting / Frontend Posting / Front Editor – WP Front User Submit Medium 5.3 2026-01-07 09:21:00 Deep Dive
CVE-2025-14804 Frontend File Manager < 23.5 - Subscriber+ Arbitrary File Deletion UnknownFrontend File Manager Plugin 中危 -2026-01-07 06:00:10 Deep Dive
CVE-2025-14047 WP User Frontend <= 4.2.4 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion wedevsUser Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration Medium 5.3 2026-01-02 01:48:20 Deep Dive
CVE-2025-14913 Frontend Post Submission Manager Lite <= 1.2.6 - Incorrect Authorization to Unauthenticated Arbitrary Attachment Deletion wpshuffleFrontend Post Submission Manager Lite – Frontend Posting WordPress Plugin Medium 5.3 2025-12-25 23:20:03 Deep Dive
CVE-2025-14080 Frontend Post Submission Manager Lite <= 1.2.5 - Missing Authorization to Unauthenticated Arbitrary Post Modification wpshuffleFrontend Post Submission Manager Lite – Frontend Posting WordPress Plugin Medium 5.3 2025-12-21 02:20:31 Deep Dive
CVE-2025-54004 WordPress WCFM – Frontend Manager for WooCommerce plugin <= 6.7.24 - Broken Access Control vulnerability WC LoversWCFM – Frontend Manager for WooCommerce Low 2.7 2025-12-16 08:12:46 Deep Dive
CVE-2025-13342 Frontend Admin by DynamiApps <= 3.28.20 - Unauthenticated Arbitrary Options Update shabtiFrontend Admin by DynamiApps Critical 9.8 2025-12-03 12:29:55 Deep Dive
CVE-2025-13382 Frontend File Manager Plugin <= 23.4 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary File Renaming nmediaFrontend File Manager Plugin Medium 4.3 2025-11-25 07:28:24 Deep Dive
CVE-2025-12569 WP Front User Submit < 5.0.0 - Open Redirect UnknownGuest posting / Frontend Posting / Front Editor--2025-11-24 06:00:07 Deep Dive
CVE-2025-64758 @dependencytrack/frontend Vulnerable to Persistent Cross-Site-Scripting via Welcome Message DependencyTrackfrontend Medium 4.8 2025-11-17 17:24:27 Deep Dive
CVE-2025-64265 WordPress Frontend File Manager plugin <= 23.2 - Broken Access Control vulnerability N-MediaFrontend File Manager Medium 4.3 2025-11-13 09:24:29 Deep Dive
CVE-2025-60210 WordPress Everest Forms - Frontend Listing plugin <= 1.0.5 - PHP Object Injection Vulnerability wpeverestEverest Forms - Frontend Listing--2025-10-22 14:32:43 Deep Dive
CVE-2025-57898 WordPress WP Frontend Admin plugin <= 1.22.7 - Cross Site Scripting (XSS) vulnerability Jose VegaWP Frontend Admin Medium 6.5 2025-09-22 18:25:30 Deep Dive
CVE-2025-57921 WordPress Frontend File Manager plugin <= 23.3 - Broken Access Control vulnerability N-MediaFrontend File Manager Medium 5.3 2025-09-22 18:25:12 Deep Dive
CVE-2025-58673 WordPress WP User Frontend Plugin <= 4.1.12 - Content Injection Vulnerability weDevsWP User Frontend Medium 5.4 2025-09-22 18:22:53 Deep Dive
CVE-2025-58672 WordPress WP User Frontend Plugin <= 4.1.12 - Broken Access Control Vulnerability weDevsWP User Frontend Medium 5.4 2025-09-22 18:22:53 Deep Dive
CVE-2025-49267 WordPress Frontend Admin by DynamiApps plugin <= 3.28.3 - SQL Injection vulnerability Shabti KaplanFrontend Admin by DynamiApps High 8.5 2025-08-14 10:34:10 Deep Dive
CVE-2023-7306 Frontend File Manager <= 21.5 - Missing Authorization to Unauthenticated Arbitrary Post Deletion nmediaFrontend File Manager Plugin High 7.5 2025-07-25 08:22:50 Deep Dive