Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

WordPress User Extra Fields — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in WordPress User Extra Fields, with AI-generated Chinese analysis, references, and POCs.

Vendor: vanquish

CVE IDTitleCVSSSeverityPublished
CVE-2025-7846 WordPress User Extra Fields <= 16.7 - Authenticated (Subscriber+) Arbitrary File Deletion via save_fields Function CWE-36 8.8 High2025-10-31
CVE-2024-11150 WordPress User Extra Fields <= 16.6 - Unauthenticated Arbitrary File Deletion CWE-22 9.8 Critical2024-11-13
CVE-2024-10800 WordPress User Extra Fields <= 16.6 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation CWE-862 8.8 High2024-11-13
CVE-2024-10801 WordPress User Extra Fields <= 16.5 - Unauthenticated Arbitrary File Upload CWE-434 9.8 Critical2024-11-09

All 4 known CVE vulnerabilities affecting WordPress User Extra Fields with full Chinese analysis, references, and POCs where available.