| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-30888 | WordPress Custom Fields Account Registration For Woocommerce Plugin <= 1.1 - Cross Site Request Forgery (CSRF) vulnerability | silverplugins217 | Custom Fields Account Registration For Woocommerce | Medium | 4.3 | 2025-03-27 10:55:44 | Deep Dive |
| CVE-2024-13359 | Product Input Fields for WooCommerce <= 1.12.0 - Unauthenticated Limited File Upload | tychesoftwares | Product Input Fields for WooCommerce | High | 8.1 | 2025-03-08 09:22:54 | Deep Dive |
| CVE-2024-13632 | WP Extra Fields <= 1.0.1 - Reflected XSS | Unknown | WP Extra Fields | 高危 | - | 2025-02-26 06:00:10 | Deep Dive |
| CVE-2025-23822 | WordPress Category Custom Fields plugin <= 1.0 - CSRF to Stored XSS vulnerability | alicornea | Category Custom Fields | High | 7.1 | 2025-01-16 20:07:10 | Deep Dive |
| CVE-2025-23430 | WordPress Mass Custom Fields Manager plugin <= 1.5 - CSRF to Cross Site Scripting (XSS) vulnerability | Oren Yomtov | Mass Custom Fields Manager | High | 7.1 | 2025-01-16 20:05:56 | Deep Dive |
| CVE-2024-13311 | Allow All File Extensions for file fields - Critical - Unsupported - SA-CONTRIB-2024-075 | Drupal | Allow All File Extensions for file fields | 中危 | - | 2025-01-09 20:28:25 | Deep Dive |
| CVE-2025-22308 | WordPress Smart Custom FIelds plugin <= 5.0.0 - Cross Site Scripting (XSS) vulnerability | Takashi Kitajima | Smart Custom Fields | Medium | 6.5 | 2025-01-07 10:48:57 | Deep Dive |
| CVE-2023-46203 | WordPress Just Custom Fields plugin <= 3.3.2 - Broken Access Control vulnerability | Alex Prokopenko / JustCoded | Just Custom Fields | Medium | 4.3 | 2025-01-02 12:00:16 | Deep Dive |
| CVE-2024-45600 | Fields GLPI plugin has an Authenticated SQL Injection | pluginsGLPI | fields | High | 7.7 | 2024-12-26 21:27:01 | Deep Dive |
| CVE-2024-12601 | Calculated Fields Form <= 5.2.63 - Denial of Service | codepeople | Calculated Fields Form | Medium | 5.3 | 2024-12-17 11:10:18 | Deep Dive |
| CVE-2024-37251 | WordPress Advanced Custom Fields Pro plugin < 6.3.2 - Cross-Site Request Forgery (CSRF) vulnerability | WPENGINE, INC. | Advanced Custom Fields PRO | Medium | 4.3 | 2024-12-16 15:03:39 | Deep Dive |
| CVE-2023-31073 | WordPress Shortcode to display post and user data plugin <= 1.2.0 - Broken Access Control vulnerability | Jose Vega | Display custom fields in the frontend – Post and User Profile Fields | Medium | 4.3 | 2024-12-09 11:31:00 | Deep Dive |
| CVE-2023-47838 | WordPress Conditional Fields for Contact Form 7 plugin <= 2.4.1 - Broken Access Control vulnerability | Jules Colle | Conditional Fields for Contact Form 7 | 中危 | - | 2024-12-09 11:30:37 | Deep Dive |
| CVE-2024-10857 | Product Input Fields for WooCommerce <= 1.9 - Authenticated (Contributor+) Arbitrary File Read | tychesoftwares | Product Input Fields for WooCommerce | Medium | 6.5 | 2024-11-26 06:43:45 | Deep Dive |
| CVE-2024-11406 | Stored XSS in django CMS Attributes Fields | django CMS Association | django CMS Attributes Fields | Medium | 6.9 | 2024-11-20 12:00:27 | Deep Dive |
| CVE-2024-9529 | Secure Custom Fields < 6.3.6.3 - Admin+ Remote Code Execution | Unknown | Secure Custom Fields | - | - | 2024-11-15 06:00:08 | Deep Dive |
| CVE-2024-11150 | WordPress User Extra Fields <= 16.6 - Unauthenticated Arbitrary File Deletion | vanquish | WordPress User Extra Fields | Critical | 9.8 | 2024-11-13 04:29:07 | Deep Dive |
| CVE-2024-10800 | WordPress User Extra Fields <= 16.6 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation | vanquish | WordPress User Extra Fields | High | 8.8 | 2024-11-13 04:29:06 | Deep Dive |
| CVE-2024-10801 | WordPress User Extra Fields <= 16.5 - Unauthenticated Arbitrary File Upload | vanquish | WordPress User Extra Fields | Critical | 9.8 | 2024-11-09 07:35:06 | Deep Dive |
| CVE-2024-37250 | WordPress Advanced Custom Fields Pro plugin < 6.3.2 - Subscriber+ Broken Access Control vulnerability | WPEngine Inc. | Advanced Custom Fields PRO | Medium | 5.4 | 2024-11-01 14:18:41 | Deep Dive |