| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-68004 | WordPress My Post Order plugin <= 1.2.1.1 - Reflected Cross Site Scripting (XSS) vulnerability | Kapil Chugh | My Post Order | - | - | 2026-01-22 16:52:00 | Deep Dive |
| CVE-2025-29013 | WordPress Custom Category/Post Type Post order plugin <= 1.6.0 - Broken Access Control Vulnerability | faaiq | Custom Category/Post Type Post order | Medium | 5.4 | 2025-06-06 12:54:25 | Deep Dive |
| CVE-2025-4055 | Multiple Post Type Order <= 1.10.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mpto Shortcode | josj404 | Multiple Post Type Order | Medium | 6.4 | 2025-05-07 01:43:09 | Deep Dive |
| CVE-2025-2805 | ORDER POST <= 2.0.2 - Unauthenticated Arbitrary Shortcode Execution | vikashsrivastava1111989 | ORDER POST | High | 7.3 | 2025-04-10 07:02:40 | Deep Dive |
| CVE-2024-49321 | WordPress Simple Custom Post Order plugin <= 2.5.7 - Broken Access Control vulnerability | colorlibplugins | Simple Custom Post Order | - | - | 2024-10-21 11:11:02 | Deep Dive |
| CVE-2024-27196 | WordPress postMash – custom post order plugin <= 1.2.0 - Reflected Cross Site Scripting (XSS) vulnerability | Joel Starnes | postMash – custom post order | High | 7.1 | 2024-03-15 12:47:13 | Deep Dive |
| CVE-2024-25927 | WordPress postMash – custom post order Plugin <= 1.2.0 is vulnerable to SQL Injection | Joel Starnes | postMash – custom post order | Critical | 9.3 | 2024-02-28 12:47:35 | Deep Dive |
| CVE-2023-47521 | WordPress Q2W3 Post Order Plugin <= 1.2.8 is vulnerable to Cross Site Scripting (XSS) | Max Bond, AndreSC | Q2W3 Post Order | High | 7.1 | 2023-11-30 16:59:43 | Deep Dive |
| CVE-2023-1016 | Intuitive Custom Post Order <= 3.1.4.1 - Authenticated (Admin+) SQL Injection | hijiri | Intuitive Custom Post Order | Medium | 6.6 | 2023-06-09 05:33:36 | Deep Dive |
| CVE-2022-4386 | Intuitive Custom Post Order < 3.1.4 - Arbitrary Menu Order Update via CSRF | Unknown | Intuitive Custom Post Order | 中危 | - | 2023-02-21 08:51:03 | Deep Dive |
| CVE-2022-4385 | Intuitive Custom Post Order < 3.1.4 - Subscriber+ Arbitrary Menu Order Update | Unknown | Intuitive Custom Post Order | 中危 | - | 2023-02-21 08:50:41 | Deep Dive |