All 8 CVE vulnerabilities found in Directorist, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-39509 | WordPress Directorist plugin <= 8.5.10 - Broken Access Control vulnerability CWE-862 | 8.1AI | HighAI | 2026-04-08 |
| CVE-2025-68069 | WordPress Directorist plugin <= 8.6.6 - Broken Access Control vulnerability CWE-862 | 7.1 | High | 2026-02-20 |
| CVE-2025-64250 | WordPress Directorist plugin <= 8.6.6 - Open Redirection vulnerability CWE-601 | 4.7 | Medium | 2025-12-16 |
| CVE-2023-35052 | WordPress Directorist plugin <= 7.5.4 - Arbitrary Content Deletion vulnerability CWE-862 | 4.3 | Medium | 2024-12-13 |
| CVE-2024-33929 | WordPress Directorist plugin <= 7.8.6 - Broken Access Control vulnerability CWE-862 | 5.3 | Medium | 2024-05-03 |
| CVE-2023-2252 | Directorist < 7.5.4 - Admin+ LFI | 8.1 | - | 2024-01-16 |
| CVE-2022-3961 | Directorist < 7.4.4 - Subscriber+ Sensitive Information Disclosure | 6.5 | - | 2022-12-19 |
| CVE-2022-3930 | Directorist < 7.4.2.2 - Subscriber+ Arbitrary User Password Update via IDOR | 6.5 | - | 2022-12-12 |
All 8 known CVE vulnerabilities affecting Directorist with full Chinese analysis, references, and POCs where available.