All 8 CVE vulnerabilities found in User Activity Log, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-13471 | User Activity Log <= 2.2 - Unauthenticated Limited Arbitrary Option Update | 7.5AI | HighAI | 2026-01-28 |
| CVE-2025-11877 | User Activity Log <= 2.2 - Unauthenticated Limited Options Update via Failed Login CWE-862 | 7.5 | High | 2026-01-07 |
| CVE-2024-31356 | WordPress User Activity Log plugin <= 1.8 - Auth. SQL Injection vulnerability CWE-89 | 7.6 | High | 2024-04-10 |
| CVE-2023-37966 | WordPress User Activity Log Plugin <= 1.6.2 is vulnerable to SQL Injection CWE-89 | 9.8 | - | 2023-10-31 |
| CVE-2023-4279 | User Activity Log < 1.6.7 - IP Spoofing | 7.5 | - | 2023-09-04 |
| CVE-2023-4269 | User Activity Log < 1.6.6 - Subscriber+ Log Export | 4.3 | - | 2023-09-04 |
| CVE-2023-3435 | User Activity Log < 1.6.5 - Unauthenticated SQLi | 9.8 | - | 2023-08-14 |
| CVE-2023-2761 | User Activity Log < 1.6.3 - Admin+ SQL Injection | 7.2 | - | 2023-07-24 |
All 8 known CVE vulnerabilities affecting User Activity Log with full Chinese analysis, references, and POCs where available.