Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 12 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-39701 WordPress ShopWP plugin <= 5.2.4 - Broken Access Control vulnerability AndrewShopWP--2026-04-08 08:30:47 Deep Dive
CVE-2026-32520 WordPress RewardsWP plugin <= 1.0.4 - Privilege Escalation vulnerability Andrew Munro / AffiliateWPRewardsWP 中危 -2026-03-25 16:15:07 Deep Dive
CVE-2025-62085 WordPress BERTHA AI plugin <= 1.13 - Broken Access Control vulnerability Bertha AI &#8211; Andrew PalmerBERTHA AI--2025-12-09 14:52:19 Deep Dive
CVE-2025-67575 WordPress Sitewide Notice WP plugin <= 2.4.1 - Broken Access Control vulnerability Andrew LimaSitewide Notice WP Medium 5.3 2025-12-09 14:14:14 Deep Dive
CVE-2025-48138 WordPress BERTHA AI plugin <= 1.13 - Broken Access Control Vulnerability Bertha AI &#8211; Andrew PalmerBERTHA AI Medium 4.3 2025-05-16 15:45:16 Deep Dive
CVE-2025-39583 WordPress BERTHA AI plugin <= 1.12.10.2 - Arbitrary Content Deletion Vulnerability Bertha AI &#8211; Andrew PalmerBERTHA AI High 7.1 2025-04-17 15:46:46 Deep Dive
CVE-2025-25078 WordPress Google Earth Embed plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability Andrew NorcrossGoogle Earth Embed Medium 6.5 2025-02-07 10:11:30 Deep Dive
CVE-2023-40678 WordPress Simple URLs plugin <= 117 - Broken Access Control vulnerability Andrew FiebertSimple URLs 中危 -2024-12-13 14:24:09 Deep Dive
CVE-2024-35723 WordPress Dashboard To-Do List plugin <= 1.2.0 - Broken Access Control vulnerability AndrewDashboard To-Do List Medium 4.3 2024-06-10 07:50:24 Deep Dive
CVE-2024-31376 WordPress Dashboard To-Do List plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) vulnerability AndrewDashboard To-Do List Medium 4.3 2024-04-15 10:22:56 Deep Dive
CVE-2023-30752 WordPress External Videos Plugin <= 2.0.1 is vulnerable to Cross Site Scripting (XSS) Silvia Pfeiffer and Andrew NimmoExternal Videos Medium 5.9 2023-08-14 14:45:23 Deep Dive
CVE-2023-23701 WordPress Easy Sign Up Plugin <= 3.4.1 is vulnerable to Cross Site Scripting (XSS) Andrew @ Geeenville Web DesignEasy Sign Up Medium 6.5 2023-05-10 07:58:39 Deep Dive