All 3 CVE vulnerabilities found in wProject, with AI-generated Chinese analysis, references, and POCs.
Vendor: Rocket Apps
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-39350 | WordPress wProject theme < 5.8.0 - Unauthenticated Post/Comment/Attachment Modification/Deletion vulnerability CWE-862 | 8.2 | High | 2025-05-19 |
| CVE-2025-39365 | WordPress wProject theme < 5.8.0 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2025-05-19 |
| CVE-2025-39366 | WordPress wProject theme < 5.8.0 - Subscriber+ Privilege Escalation vulnerability CWE-266 | 8.8 | High | 2025-05-19 |
All 3 known CVE vulnerabilities affecting wProject with full Chinese analysis, references, and POCs where available.