Browse all 3 CVE security advisories affecting PX-lab. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-8385 | Zombify <= 1.7.5 - Authenticated (Subscriber+) Path Traversal to Arbitrary File Read — ZombifyCWE-22 | 6.8 | Medium | 2025-10-31 |
| CVE-2024-12295 | BoomBox Theme Extensions <= 1.8.0 - Authenticated (Subscriber+) Privilege Escalation via Password Reset/Account Takeover in boombox_ajax_reset_password — BoomBox Theme ExtensionsCWE-640 | 8.8 | High | 2025-03-19 |
| CVE-2024-12859 | BoomBox Theme Extensions <= 1.8.0 - Authenticated (Contributor+) Local File Inclusion via Shortcode — BoomBox Theme ExtensionsCWE-98 | 8.8 | High | 2025-02-03 |
This page lists every published CVE security advisory associated with PX-lab. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.