All 4 CVE vulnerabilities found in Automatic, with AI-generated Chinese analysis, references, and POCs.
Vendor: ValvePress
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-27955 | WordPress Automatic plugin <= 3.92.0 - CSRF to Privilege Escalation vulnerability CWE-352 | 8.3 | High | 2024-05-17 |
| CVE-2024-27954 | WordPress Automatic plugin <= 3.92.0 - Unauthenticated Arbitrary File Download and SSRF vulnerability CWE-22 | 9.3 | Critical | 2024-05-17 |
| CVE-2024-32693 | WordPress Automatic plugin < 3.93.0 - Multiple Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 7.6 | High | 2024-04-22 |
| CVE-2024-27956 | WordPress Automatic plugin <= 3.92.0 - Unauthenticated Arbitrary SQL Execution vulnerability CWE-89 | 9.9 | Critical | 2024-03-21 |
All 4 known CVE vulnerabilities affecting Automatic with full Chinese analysis, references, and POCs where available.