Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ListingPro — Vulnerabilities & Security Advisories 15

All 15 CVE vulnerabilities found in ListingPro, with AI-generated Chinese analysis, references, and POCs.

Vendor: CridioStudio

CVE IDTitleCVSSSeverityPublished
CVE-2026-28122 WordPress ListingPro plugin <= 2.9.8 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 6.1 -2026-03-05
CVE-2025-64377 WordPress ListingPro theme < 2.9.10 - Local File Inclusion vulnerability CWE-98 9.1AICriticalAI2025-12-18
CVE-2025-64378 WordPress ListingPro theme < 2.9.10 - Broken Access Control vulnerability CWE-862 7.1 High2025-12-18
CVE-2025-64376 WordPress ListingPro theme < 2.9.10 - Cross Site Scripting (XSS) vulnerability CWE-79 6.1AIMediumAI2025-12-18
CVE-2025-63039 WordPress ListingPro theme <= 2.9.9 - Broken Access Control vulnerability CWE-862 6.5 Medium2025-12-18
CVE-2025-63047 WordPress ListingPro theme <= 2.9.9 - Broken Access Control vulnerability CWE-862 9.1AICriticalAI2025-12-09
CVE-2025-63046 WordPress ListingPro plugin <= 2.9.9 - Cross Site Scripting (XSS) vulnerability CWE-79 6.1AIMediumAI2025-12-09
CVE-2025-60103 WordPress ListingPro plugin <= 2.9.8 - Broken Access Control vulnerability CWE-862 5.4 Medium2025-09-26
CVE-2024-39623 WordPress ListingPro theme <= 2.9.4 - Cross Site Request Forgery (CSRF) to Account Takeover vulnerability CWE-352 8.8 High2025-01-02
CVE-2024-39622 WordPress ListingPro theme <= 2.9.4 - Unauthenticated SQL Injection vulnerability CWE-89 9.3 Critical2024-08-29
CVE-2024-39620 WordPress ListingPro plugin <= 2.9.4 - SQL Injection vulnerability CWE-89 8.5 High2024-08-29
CVE-2024-38795 WordPress ListingPro plugin <= 2.9.4 - Unauthenticated SQL Injection vulnerability CWE-89 9.3 Critical2024-08-29
CVE-2024-39619 WordPress ListingPro plugin <= 2.9.4 - Unauthenticated Local File Inclusion vulnerability CWE-22 9.0 Critical2024-08-01
CVE-2024-39621 WordPress ListingPro plugin <= 2.9.4 - Local File Inclusion vulnerability CWE-22 8.0 High2024-08-01
CVE-2024-39624 WordPress ListingPro theme <= 2.9.4 - Local File Inclusion vulnerability CWE-22 8.5 High2024-08-01

All 15 known CVE vulnerabilities affecting ListingPro with full Chinese analysis, references, and POCs where available.