Browse all 5 CVE security advisories affecting whyun. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-14002 | WPCOM Member <= 1.7.16 - Authentication Bypass via Weak OTP — WPCOM MemberCWE-287 | 8.1 | High | 2025-12-16 |
| CVE-2025-11920 | WPCOM Member <= 1.7.14 - Authenticated (Contributor+) Local File Inclusion via Shortcode — WPCOM MemberCWE-98 | 8.8 | High | 2025-11-01 |
| CVE-2025-2221 | WPCOM Member <= 1.7.6 - Unauthenticated Time-Based SQL Injection — WPCOM MemberCWE-89 | 7.5 | High | 2025-03-14 |
| CVE-2025-1475 | WPCOM Member <= 1.7.5 - Authentication Bypass via 'user_phone' — WPCOM MemberCWE-287 | 9.8 | Critical | 2025-03-07 |
| CVE-2024-7493 | WPCOM Member <= 1.5.2.1 - Unauthenticated Privilege Escalation via User Meta — WPCOM MemberCWE-269 | 9.8 | Critical | 2024-09-06 |
This page lists every published CVE security advisory associated with whyun. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.