All 3 CVE vulnerabilities found in Staff Directory Plugin: Company Directory, with AI-generated Chinese analysis, references, and POCs.
Vendor: richardgabriel
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-13839 | Company Directory <= 4.3 - Reflected Cross-Site Scripting via add_query_arg Function CWE-79 | 6.1 | Medium | 2025-03-05 |
| CVE-2025-25165 | WordPress Staff Directory Plugin: Company Directory Plugin <= 4.3 - Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2025-03-03 |
| CVE-2021-4397 | Staff Directory Plugin <= 3.6 - Cross-Site Request Forgery Bypass CWE-352 | 4.3 | Medium | 2023-07-01 |
All 3 known CVE vulnerabilities affecting Staff Directory Plugin: Company Directory with full Chinese analysis, references, and POCs where available.