All 6 CVE vulnerabilities found in WP Editor, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-3294 | WP Editor <= 1.2.9.1 - Authenticated (Administrator+) Directory Traversal to Arbitrary File Update CWE-22 | 7.2 | High | 2025-04-17 |
| CVE-2025-3295 | WP Editor <= 1.2.9.1 - Authenticated (Administrator+) Directory Traversal to Arbitrary File Read CWE-22 | 4.9 | Medium | 2025-04-17 |
| CVE-2022-2446 | WP Editor <= 1.2.9 - Authenticated (Admin+) PHAR Deserialization CWE-502 | 7.2 | High | 2024-09-13 |
| CVE-2024-24700 | WordPress WP Editor plugin <= 1.2.8 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2024-03-27 |
| CVE-2024-25591 | WordPress WP Editor plugin <=1.2.7 - Sensitive Data Exposure vulnerability CWE-200 | 5.3 | Medium | 2024-03-17 |
| CVE-2021-24151 | WP Editor < 1.2.7 - Authenticated SQL injection | 7.2 | - | 2024-01-16 |
All 6 known CVE vulnerabilities affecting WP Editor with full Chinese analysis, references, and POCs where available.