All 4 CVE vulnerabilities found in CMSMasters Content Composer, with AI-generated Chinese analysis, references, and POCs.
Vendor: cmsmasters
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25326 | WordPress CMSMasters Content Composer plugin <= 1.4.5 - Local File Inclusion vulnerability CWE-98 | 7.5 | High | 2026-02-19 |
| CVE-2026-23547 | WordPress CMSMasters Content Composer plugin <= 2.5.8 - Broken Access Control vulnerability CWE-862 | 7.1 | High | 2026-02-19 |
| CVE-2025-4414 | WordPress CMSMasters Content Composer plugin < 2.5.7 - Local File Inclusion vulnerability CWE-98 | 8.1 | High | 2025-07-04 |
| CVE-2024-7963 | CMSMasters Content Composer <= 1.8.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CWE-79 | 6.4 | Medium | 2024-10-09 |
All 4 known CVE vulnerabilities affecting CMSMasters Content Composer with full Chinese analysis, references, and POCs where available.