All 6 CVE vulnerabilities found in LuckyWP Table of Contents, with AI-generated Chinese analysis, references, and POCs.
Vendor: theluckywp
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-2299 | LuckyWP Table of Contents <= 2.1.10 - Cross-Site Request Forgery to Reflected Cross-Site Scripting CWE-79 | 6.1 | Medium | 2025-04-03 |
| CVE-2024-9641 | LuckyWP Table of Contents < 2.1.7 - Admin+ Stored XSS | 4.8 | - | 2024-12-12 |
| CVE-2024-2218 | LuckyWP Table of Contents <= 2.1.4 - Admin+ Stored XSS | 4.8AI | MediumAI | 2024-06-14 |
| CVE-2024-2953 | LuckyWP Table of Contents <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 | 5.5 | Medium | 2024-05-22 |
| CVE-2023-6487 | LuckyWP Table of Contents <= 2.1.5 - Authenticated (Administrator+) Cross-Site Scripting CWE-79 | 4.4 | Medium | 2024-05-22 |
| CVE-2024-2119 | LuckyWP Table of Contents <= 2.1.5 - Reflected Cross-Site Scripting CWE-79 | 6.1 | Medium | 2024-05-22 |
All 6 known CVE vulnerabilities affecting LuckyWP Table of Contents with full Chinese analysis, references, and POCs where available.