All 4 CVE vulnerabilities found in AR for WordPress, with AI-generated Chinese analysis, references, and POCs.
Vendor: webandprint
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-60156 | WordPress AR For WordPress plugin <= 8.36 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 9.6 | Critical | 2025-09-26 |
| CVE-2025-26913 | WordPress AR for WordPress plugin <= 7.7 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2025-02-25 |
| CVE-2024-12300 | AR for WordPress <= 7.3 - Missing Authorization to Unauthenticated Limited File Upload CWE-862 | 3.7 | Low | 2024-12-13 |
| CVE-2024-50496 | WordPress AR For WordPress plugin <= 6.6 - Arbitrary File Upload vulnerability CWE-434 | 10.0 | Critical | 2024-10-28 |
All 4 known CVE vulnerabilities affecting AR for WordPress with full Chinese analysis, references, and POCs where available.