Zendrop – Global Dropshipping — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in Zendrop – Global Dropshipping, with AI-generated Chinese analysis, references, and POCs.

Vendor: Zendrop

CVE ID	Title	CVSS	Severity	Published
CVE-2023-25970	WordPress Zendrop – Global Dropshipping Plugin <= 1.0.0 is vulnerable to Arbitrary File Upload CWE-434	10.0	Critical	2023-12-20
CVE-2023-25960	WordPress Zendrop – Global Dropshipping Plugin <= 1.0.0 is vulnerable to SQL Injection CWE-89	10.0	Critical	2023-11-03

All 2 known CVE vulnerabilities affecting Zendrop – Global Dropshipping with full Chinese analysis, references, and POCs where available.