All 6 CVE vulnerabilities found in CubeWP, with AI-generated Chinese analysis, references, and POCs.
Vendor: Imran Tauqeer
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-68036 | WordPress CubeWP plugin <= 1.1.27 - Broken Access Control vulnerability CWE-862 | 7.5 | High | 2025-12-29 |
| CVE-2025-59569 | WordPress CubeWP Plugin <= 1.1.26 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-09-22 |
| CVE-2025-54735 | WordPress CubeWP Framework Plugin <= 1.1.24 - Privilege Escalation Vulnerability CWE-266 | 8.8 | High | 2025-08-20 |
| CVE-2025-49882 | WordPress CubeWP Framework plugin <= 1.1.23 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-06-17 |
| CVE-2025-30994 | WordPress CubeWP plugin <= 1.1.29 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2025-06-06 |
| CVE-2024-48039 | WordPress CubeWP Framework plugin <= 1.1.15 - Broken Access Control vulnerability CWE-862 | 4.3 | Medium | 2024-11-01 |
All 6 known CVE vulnerabilities affecting CubeWP with full Chinese analysis, references, and POCs where available.