All 5 CVE vulnerabilities found in Javo Core, with AI-generated Chinese analysis, references, and POCs.
Vendor: javothemes
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-60068 | WordPress Javo Core plugin <= 3.0.0.266 - Arbitrary Code Execution vulnerability CWE-94 | 6.5 | Medium | 2025-12-18 |
| CVE-2025-58877 | WordPress Javo Core plugin <= 3.0.0.529 - Arbitrary Content Deletion vulnerability CWE-862 | 7.5 | High | 2025-12-18 |
| CVE-2025-60111 | WordPress Javo Core Plugin <= 3.0.0.266 - Cross Site Request Forgery (CSRF) Vulnerability CWE-352 | 8.8 | High | 2025-09-26 |
| CVE-2025-58003 | WordPress Javo Core Plugin <= 3.0.0.266 - Broken Access Control Vulnerability CWE-862 | 5.3 | Medium | 2025-09-22 |
| CVE-2025-0177 | Javo Core <= 3.0.0.080 - Unauthenticated Privilege Escalation in ajax_signup CWE-269 | 9.8 | Critical | 2025-03-08 |
All 5 known CVE vulnerabilities affecting Javo Core with full Chinese analysis, references, and POCs where available.