| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-39654 | WordPress WP Simple HTML Sitemap plugin <= 3.8 - Cross Site Scripting (XSS) vulnerability | Ashish Ajani | WP Simple HTML Sitemap | - | - | 2026-04-08 08:30:36 | Deep Dive |
| CVE-2026-22355 | WordPress Simple XML Sitemap plugin <= 1.3 - CSRF to Stored XSS vulnerability | gregmolnar | Simple XML Sitemap | - | - | 2026-01-22 16:52:35 | Deep Dive |
| CVE-2025-6676 | Simple XML sitemap - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-083 | Drupal | Simple XML sitemap | - | - | 2025-06-26 13:33:54 | Deep Dive |
| CVE-2025-39413 | WordPress Simple Sitemap – Create a Responsive HTML Sitemap plugin <= 3.6.0 - Broken Access Control vulnerability | David Gwyer | Simple Sitemap – Create a Responsive HTML Sitemap | Medium | 4.3 | 2025-04-30 17:18:59 | Deep Dive |
| CVE-2025-31822 | WordPress WordPress Simple HTML Sitemap plugin <= 3.4 - Broken Access Control vulnerability | Ashish Ajani | WP Simple HTML Sitemap | Medium | 5.3 | 2025-04-01 14:51:46 | Deep Dive |
| CVE-2025-27318 | WordPress Simple Google Sitemap Plugin <= 1.6 - Cross Site Request Forgery (CSRF) vulnerability | ixiter | Simple Google Sitemap | Medium | 4.3 | 2025-02-24 14:49:02 | Deep Dive |
| CVE-2025-22342 | WordPress WP Simple Sitemap plugin <= 0.2 - CSRF to Stored XSS vulnerability | Jenst | WP Simple Sitemap | High | 7.1 | 2025-01-07 10:48:44 | Deep Dive |
| CVE-2023-49850 | WordPress WP Simple HTML Sitemap plugin <= 2.7 - Broken Access Control vulnerability | Ashish Ajani | WP Simple HTML Sitemap | Medium | 5.3 | 2024-12-09 11:30:03 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-7385 | WordPress Simple HTML Sitemap <= 3.1 - Authenticated (Admin+) SQL Injection | ashishajani | WP Simple HTML Sitemap | Critical | 9.1 | 2024-09-25 03:27:41 | Deep Dive |
| CVE-2023-6492 | Simple Sitemap <= 3.5.13 - Cross-Site Request Forgery via admin_notices | dgwyer | Simple Sitemap – Create a Responsive HTML Sitemap | Medium | 4.3 | 2024-06-14 03:35:42 | Deep Dive |
| CVE-2024-32574 | WordPress WP Simple HTML Sitemap plugin <= 2.8 - Cross Site Scripting (XSS) vulnerability | Ashish Ajani | WP Simple HTML Sitemap | High | 7.1 | 2024-04-18 09:36:49 | Deep Dive |
| CVE-2023-24380 | WordPress Simple Wp Sitemap Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF) | Webbjocke | Simple Wp Sitemap | Medium | 4.3 | 2023-12-17 09:46:40 | Deep Dive |
| CVE-2023-46627 | WordPress WP Simple HTML Sitemap Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS) | Ashish Ajani | WordPress Simple HTML Sitemap | 中危 | - | 2023-11-08 16:02:36 | Deep Dive |
| CVE-2023-45067 | WordPress WP Simple HTML Sitemap Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS) | Ashish Ajani | WordPress Simple HTML Sitemap | Medium | 6.5 | 2023-10-18 12:30:30 | Deep Dive |
| CVE-2022-4472 | Simple Sitemap < 3.5.8 - Contributor+ Stored XSS | Unknown | Simple Sitemap | 中危 | - | 2023-01-30 20:31:35 | Deep Dive |