All 2 CVE vulnerabilities found in Custom Post Type Attachment, with AI-generated Chinese analysis, references, and POCs.
Vendor: avimegladon
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-62907 | WordPress Custom Post Type Attachment plugin <= 3.4.6 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2025-10-27 |
| CVE-2024-4546 | Custom Post Type Attachment <= 3.4.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via pdf_attachment Shortcode CWE-79 | 6.4 | Medium | 2024-05-16 |
All 2 known CVE vulnerabilities affecting Custom Post Type Attachment with full Chinese analysis, references, and POCs where available.