All 3 CVE vulnerabilities found in WP Flow Plus, with AI-generated Chinese analysis, references, and POCs.
Vendor: Spiffy Plugins
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-58625 | WordPress WP Flow Plus Plugin <= 5.2.5 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 5.9 | Medium | 2025-09-03 |
| CVE-2024-49695 | WordPress WP Flow Plus plugin <= 5.2.3 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2024-10-24 |
| CVE-2024-35651 | WordPress WP Flow Plus plugin <= 5.2.2 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2024-06-04 |
All 3 known CVE vulnerabilities affecting WP Flow Plus with full Chinese analysis, references, and POCs where available.