All 3 CVE vulnerabilities found in Simple Folio, with AI-generated Chinese analysis, references, and POCs.
Vendor: presstigers
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-14039 | Simple Folio <= 1.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'Client name' and 'Link' Meta Fields CWE-79 | 6.4 | Medium | 2026-01-28 |
| CVE-2025-64256 | WordPress Simple Folio plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2025-12-09 |
| CVE-2025-12151 | Simple Folio <= 1.1.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting CWE-79 | 6.4 | Medium | 2025-11-27 |
All 3 known CVE vulnerabilities affecting Simple Folio with full Chinese analysis, references, and POCs where available.