Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Essential Widgets — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Essential Widgets, with AI-generated Chinese analysis, references, and POCs.

Vendor: CatchThemes

CVE IDTitleCVSSSeverityPublished
CVE-2026-0867 Essential Widgets <= 3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Shortcodes CWE-79 6.4 Medium2026-02-05
CVE-2025-67543 WordPress Essential Widgets plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability CWE-79 5.4AIMediumAI2025-12-09
CVE-2021-24752 Multiple Plugins from CatchThemes - Unauthorised Plugin's Setting Change CWE-284 5.7 -2021-10-18

All 3 known CVE vulnerabilities affecting Essential Widgets with full Chinese analysis, references, and POCs where available.