Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 5 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-14478 Demo Importer Plus <= 2.0.9 - Authenticated (Author+) Blind XML External Entity Injection via SVG File Upload kraftpluginsDemo Importer Plus High 7.5 2026-01-17 07:27:38 Deep Dive
CVE-2025-69091 WordPress Demo Importer Plus plugin <= 2.0.8 - Broken Access Control vulnerability Kraft PluginsDemo Importer Plus 中危 -2025-12-30 10:47:58 Deep Dive
CVE-2025-14364 Demo Importer Plus <= 2.0.8 - Missing Authorization to Authenticated (Subscriber+) Site Reset and Privilege Escalation kraftpluginsDemo Importer Plus High 8.8 2025-12-18 09:21:30 Deep Dive
CVE-2025-13066 Demo Importer Plus <= 2.0.6 - Authenticated (Author+) Arbitrary File Upload via WXR Upload Bypass kraftpluginsDemo Importer Plus High 8.8 2025-12-05 03:28:37 Deep Dive
CVE-2024-9172 Demo Importer Plus <= 2.0.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload kraftpluginsDemo Importer Plus Medium 6.4 2024-10-02 07:35:27 Deep Dive