All 3 CVE vulnerabilities found in WP Plugin Info Card, with AI-generated Chinese analysis, references, and POCs.
Vendor: Brice Capobianco
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-2023 | WP Plugin Info Card <= 6.2.0 - Cross-Site Request Forgery to Arbitrary Custom Plugin Entry Creation CWE-352 | 4.3 | Medium | 2026-02-18 |
| CVE-2025-5116 | WP Plugin Info Card <= 5.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via containerid Parameter CWE-79 | 6.4 | Medium | 2025-06-03 |
| CVE-2025-31835 | WordPress WP Plugin Info Card plugin <= 5.3.0 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2025-04-01 |
All 3 known CVE vulnerabilities affecting WP Plugin Info Card with full Chinese analysis, references, and POCs where available.