All 3 CVE vulnerabilities found in ImageMeta, with AI-generated Chinese analysis, references, and POCs.
Vendor: ERA404
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-32025 | bep/imagemeta allows a potentially large memory allocation in PNG and WebP parsing CWE-770 | 7.5AI | HighAI | 2025-04-08 |
| CVE-2025-32024 | bep/imagemeta allows excessively large EXIF data structures CWE-770 | 7.5AI | HighAI | 2025-04-08 |
| CVE-2025-23845 | WordPress ImageMeta Plugin <= 1.1.2 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2025-02-17 |
All 3 known CVE vulnerabilities affecting ImageMeta with full Chinese analysis, references, and POCs where available.