All 5 CVE vulnerabilities found in WP Compress, with AI-generated Chinese analysis, references, and POCs.
Vendor: AresIT
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25370 | WordPress WP Compress plugin <= 6.60.28 - Broken Access Control vulnerability CWE-862 | 5.3 | Medium | 2026-02-19 |
| CVE-2025-57899 | WordPress WP Compress Plugin <= 6.50.54 - Broken Access Control Vulnerability CWE-862 | 5.3 | Medium | 2025-09-22 |
| CVE-2025-47479 | WordPress WP Compress plugin <= 6.30.30 - Broken Authentication Vulnerability CWE-1390 | 5.3 | Medium | 2025-07-04 |
| CVE-2025-47546 | WordPress WP Compress plugin <= 6.30.30 - Cross Site Request Forgery (CSRF) Vulnerability CWE-352 | 7.1 | High | 2025-05-07 |
| CVE-2024-47384 | WordPress WP Compress plugin <= 6.20.13 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2024-10-05 |
All 5 known CVE vulnerabilities affecting WP Compress with full Chinese analysis, references, and POCs where available.