All 3 CVE vulnerabilities found in PlainInventory, with AI-generated Chinese analysis, references, and POCs.
Vendor: plainware
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-32623 | WordPress PlainInventory plugin <= 3.1.9 - CSRF to Stored XSS vulnerability CWE-352 | 7.1 | High | 2025-04-09 |
| CVE-2025-24557 | WordPress PlainInventory plugin <= 3.1.5 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2025-02-03 |
| CVE-2024-56291 | WordPress PlainInventory – Inventory Management Plugin Plugin <= 3.1.6 - PHP Object Injection vulnerability CWE-502 | 8.1 | High | 2025-01-07 |
All 3 known CVE vulnerabilities affecting PlainInventory with full Chinese analysis, references, and POCs where available.