Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

10up — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting 10up. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by 10up:Simple Local AvatarsElasticPressRestricted Site AccessSimple Page OrderingMicrosoft Azure Storage for WordPressEight Day Week Print WorkflowAutoshare for Twitter
CVE IDTitleCVSSSeverityPublished
CVE-2026-25311 WordPress Autoshare for Twitter plugin <= 2.3.1 - Broken Access Control vulnerability — Autoshare for TwitterCWE-862 9.1AICriticalAI2026-02-19
CVE-2025-67621 WordPress Eight Day Week Print Workflow plugin <= 1.2.5 - Sensitive Data Exposure vulnerability — Eight Day Week Print WorkflowCWE-497 4.3 Medium2025-12-24
CVE-2025-10749 Microsoft Azure Storage for WordPress <= 4.5.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Media Deletion — Microsoft Azure Storage for WordPressCWE-862 5.4 Medium2025-10-24
CVE-2025-8482 Simple Local Avatars <= 2.8.4 - Missing Authorization to Authenticated (Subscriber+) Avatar Migration — Simple Local AvatarsCWE-862 4.3 Medium2025-08-12
CVE-2023-32798 WordPress Simple Page Ordering plugin <= 2.5.0 - Broken Access Control vulnerability — Simple Page OrderingCWE-862 5.3 Medium2024-12-13
CVE-2024-10786 Simple Local Avatars <= 2.7.11 - Missing Authorization to Authenticated (Subscriber+) User Cache Clearing — Simple Local AvatarsCWE-862 4.3 Medium2024-11-16
CVE-2024-43116 WordPress Simple Local Avatars plugin <= 2.7.10 - Cross Site Request Forgery (CSRF) vulnerability — Simple Local AvatarsCWE-352 4.3 Medium2024-08-26
CVE-2024-35684 WordPress ElasticPress plugin <= 5.1.1 - Cross Site Request Forgery (CSRF) vulnerability — ElasticPressCWE-352 4.3 Medium2024-06-08
CVE-2023-48753 WordPress Restricted Site Access plugin <= 7.4.1 - IP Restriction Bypass vulnerability — Restricted Site AccessCWE-290 5.3 Medium2024-06-04
CVE-2021-4405 ElasticPress <= 3.5.3 - Cross-Site Request Forgery Bypass — ElasticPressCWE-352 4.3 Medium2023-07-01

This page lists every published CVE security advisory associated with 10up. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.