All 3 CVE vulnerabilities found in Email Address Encoder, with AI-generated Chinese analysis, references, and POCs.
Vendor: Till Krüss
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-5305 | Email Address Encoder (Free < 1.0.25, Premium < 0.3.12) - Unauthenticated Stored XSS | - | - | 2026-06-25 |
| CVE-2024-43927 | WordPress Email Address Encoder plugin <= 1.0.23 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2025-01-02 |
| CVE-2023-48765 | WordPress Email Address Encoder Plugin <= 1.0.22 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 6.5 | Medium | 2023-12-15 |
All 3 known CVE vulnerabilities affecting Email Address Encoder with full Chinese analysis, references, and POCs where available.