All 4 CVE vulnerabilities found in JS Archive List, with AI-generated Chinese analysis, references, and POCs.
Vendor: skatox
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2026-32513 | WordPress JS Archive List plugin <= 6.1.7 - PHP Object Injection vulnerability CWE-502 | 8.8 | - | 2026-03-25 |
| CVE-2026-2020 | JS Archive List <= 6.1.7 - Authenticated (Contributor+) PHP Object Injection via 'included' Shortcode Attribute CWE-502 | 7.5 | High | 2026-03-07 |
| CVE-2025-54726 | WordPress JS Archive List Plugin < 6.1.6 - SQL Injection Vulnerability CWE-89 | 9.3 | Critical | 2025-08-20 |
| CVE-2025-7670 | JS Archive List <= 6.1.5 - Unauthenticated SQL Injection via build_sql_where Function CWE-89 | 7.5 | High | 2025-08-19 |
All 4 known CVE vulnerabilities affecting JS Archive List with full Chinese analysis, references, and POCs where available.