All 4 CVE vulnerabilities found in ActiveDEMAND, with AI-generated Chinese analysis, references, and POCs.
Vendor: JumpDEMAND Inc.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-39513 | WordPress ActiveDEMAND plugin <= 0.2.46 - Broken Access Control vulnerability CWE-862 | 5.3 | Medium | 2025-04-16 |
| CVE-2024-35638 | WordPress ActiveDEMAND plugin <= 0.2.43 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2024-06-03 |
| CVE-2024-32809 | WordPress ActiveDEMAND plugin <= 0.2.41 - Arbitrary File Upload vulnerability CWE-434 | 10.0 | Critical | 2024-05-17 |
| CVE-2022-36296 | WordPress ActiveDEMAND plugin <= 0.2.27 - Broken Authentication vulnerability CWE-287 | 6.5 | Medium | 2022-08-05 |
All 4 known CVE vulnerabilities affecting ActiveDEMAND with full Chinese analysis, references, and POCs where available.