All 6 CVE vulnerabilities found in Sitekit, with AI-generated Chinese analysis, references, and POCs.
Vendor: Webvitaly
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-58229 | WordPress Sitekit Plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-09-22 |
| CVE-2025-50047 | WordPress Sitekit plugin <= 1.9 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-06-20 |
| CVE-2025-30776 | WordPress Sitekit plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-03-27 |
| CVE-2024-29111 | WordPress Sitekit plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2024-03-19 |
| CVE-2023-5071 | Sitekit <= 1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'sitekit_iframe' shortcode CWE-79 | 6.4 | Medium | 2023-10-20 |
| CVE-2023-27628 | WordPress Sitekit Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 6.5 | Medium | 2023-09-27 |
All 6 known CVE vulnerabilities affecting Sitekit with full Chinese analysis, references, and POCs where available.