All 4 CVE vulnerabilities found in Garden Gnome Package, with AI-generated Chinese analysis, references, and POCs.
Vendor: ggnomes
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-39683 | WordPress Garden Gnome Package plugin <= 2.4.1 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.1AI | MediumAI | 2026-04-08 |
| CVE-2024-12854 | Garden Gnome Package <= 2.3.0 - Authenticated (Author+) Arbitrary File Upload CWE-434 | 8.8 | High | 2025-01-08 |
| CVE-2024-8657 | Garden Gnome Package <= 2.2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 | 6.4 | Medium | 2024-09-24 |
| CVE-2023-5664 | Garden Gnome Package <= 2.2.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CWE-79 | 6.4 | Medium | 2023-11-22 |
All 4 known CVE vulnerabilities affecting Garden Gnome Package with full Chinese analysis, references, and POCs where available.