Browse all 6 CVE security advisories affecting Alobaidi. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25310 | WordPress Extend Link plugin <= 2.0.0 - Server Side Request Forgery (SSRF) vulnerability — Extend LinkCWE-918 | 4.9 | Medium | 2026-02-19 |
| CVE-2025-13908 | The Tooltip <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes — The TooltipCWE-79 | 6.4 | Medium | 2026-01-09 |
| CVE-2025-9616 | PopAd <= 1.0.4 - Cross-Site Request Forgery to Settings Update — PopAdCWE-352 | 5.3 | Medium | 2025-09-04 |
| CVE-2025-8080 | Alobaidi Captcha <= 1.0.3 - Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin Settings — Alobaidi CaptchaCWE-79 | 4.4 | Medium | 2025-08-15 |
| CVE-2025-27280 | WordPress Archive Page plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability — Archive PageCWE-79 | 6.5 | Medium | 2025-02-24 |
| CVE-2023-4962 | Video PopUp <= 1.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Video PopUpCWE-79 | 6.4 | Medium | 2024-01-11 |
This page lists every published CVE security advisory associated with Alobaidi. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.