All 3 CVE vulnerabilities found in Sermon Manager, with AI-generated Chinese analysis, references, and POCs.
Vendor: wpforchurch
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-63000 | WordPress Sermon Manager plugin <= 2.30.0 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2025-12-31 |
| CVE-2025-63002 | WordPress Sermon Manager plugin <= 2.30.0 - Broken Access Control vulnerability CWE-862 | 5.3 | Medium | 2025-12-18 |
| CVE-2025-12368 | Sermon Manager <= 2.30.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 | 6.4 | Medium | 2025-12-05 |
All 3 known CVE vulnerabilities affecting Sermon Manager with full Chinese analysis, references, and POCs where available.