All 3 CVE vulnerabilities found in Most And Least Read Posts Widget, with AI-generated Chinese analysis, references, and POCs.
Vendor: WhileTrue
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-39549 | WordPress Most And Least Read Posts Widget plugin <= 2.5.20 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-04-16 |
| CVE-2024-49628 | WordPress Most And Least Read Posts Widget plugin <= 2.5.18 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2024-10-20 |
| CVE-2023-52133 | WordPress Most And Least Read Posts Widget Plugin <= 2.5.16 is vulnerable to SQL Injection CWE-89 | 8.5 | High | 2023-12-31 |
All 3 known CVE vulnerabilities affecting Most And Least Read Posts Widget with full Chinese analysis, references, and POCs where available.