Browse all 4 CVE security advisories affecting TODO. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-3154 | Multiple Plugins from Viszt Peter - Multiple CSRF — Woo Billingo PlusCWE-352 | 7.1 | - | 2022-10-10 |
| CVE-2022-2594 | Advanced Custom Fields 5.0-5.12.2 - Unauthenticated File Upload — Advanced Custom FieldsCWE-434 | 7.5 | - | 2022-08-22 |
| CVE-2021-24892 | Advanced Forms < 1.6.9 - Subscriber+ Arbitrary User Email Address Update via IDOR — Advanced Forms PproCWE-639 | 8.8 | - | 2021-11-23 |
| CVE-2021-24713 | Video Lessons Manager - Admin+ Stored Cross-Site Scripting — Video Lessons Manager – Best Video Course LMSCWE-79 | 4.8 | - | 2021-11-23 |
This page lists every published CVE security advisory associated with TODO. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.