All 4 CVE vulnerabilities found in Directory Pro, with AI-generated Chinese analysis, references, and POCs.
Vendor: e-plugins
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-27396 | WordPress Directory Pro plugin <= 2.5.6 - Broken Access Control vulnerability CWE-862 | 9.1 | - | 2026-03-05 |
| CVE-2025-64243 | WordPress Directory Pro plugin <= 2.5.6 - Broken Access Control vulnerability CWE-862 | 4.3 | Medium | 2025-12-16 |
| CVE-2025-52748 | WordPress Directory Pro plugin <= 2.5.5 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.1AI | MediumAI | 2025-10-22 |
| CVE-2025-57948 | WordPress Directory Pro Plugin <= 2.5.5 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-09-22 |
All 4 known CVE vulnerabilities affecting Directory Pro with full Chinese analysis, references, and POCs where available.