Zotpress — Vulnerabilities & Security Advisories 7

All 7 CVE vulnerabilities found in Zotpress, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-4666	ZotPress <= 7.3.15 - Authenticated (Author+) Stored Cross-Site Scripting via 'nickname' CWE-79	6.4	Medium	2025-06-11
CVE-2024-7429	Zotpress <= 7.3.12 - Missing Authorization CWE-284	4.3	Medium	2024-11-05
CVE-2024-47621	WordPress Zotpress plugin <= 7.3.10 - Cross Site Scripting (XSS) vulnerability CWE-79	6.5	Medium	2024-10-05
CVE-2024-34569	WordPress Zotpress plugin <= 7.3.9 - Cross Site Scripting (XSS) vulnerability CWE-79	6.5	Medium	2024-05-08
CVE-2024-30488	WordPress Zotpress plugin <= 7.3.7 - SQL Injection vulnerability CWE-89	8.5	High	2024-03-29
CVE-2023-46313	WordPress Zotpress Plugin <= 7.3.4 is vulnerable to Cross Site Scripting (XSS) CWE-79	7.1	High	2023-10-31
CVE-2023-32961	WordPress Zotpress Plugin <= 7.3.3 is vulnerable to Cross Site Scripting (XSS) CWE-79	7.1	High	2023-06-12

All 7 known CVE vulnerabilities affecting Zotpress with full Chinese analysis, references, and POCs where available.