Browse all 3 CVE security advisories affecting ghera74. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-2421 | ilGhera Carta Docente for WooCommerce <= 1.5.0 - Authenticated (Administrator+) Path Traversal to Arbitrary File Deletion via 'cert' Parameter — ilGhera Carta Docente for WooCommerceCWE-22 | 6.5 | Medium | 2026-03-20 |
| CVE-2025-14034 | ilGhera Support System for WooCommerce <= 1.2.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Ticket Deletion — ilGhera Support System for WooCommerceCWE-862 | 5.3 | Medium | 2026-01-06 |
| CVE-2024-13521 | MailUp Auto Subscription <= 1.1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting — MailUp Auto SubscriptionCWE-352 | 6.1 | Medium | 2025-01-28 |
This page lists every published CVE security advisory associated with ghera74. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.