ConvertPlus — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in ConvertPlus, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-13800	Popup Plugin For WordPress - ConvertPlus <= 3.5.30 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update CWE-862	8.1	High	2025-02-12
CVE-2024-4838	ConvertPlus <= 3.5.26 - Authenticated (Contributor+) PHP Object Injection CWE-502	7.5	High	2024-05-16
CVE-2024-3240	ConvertPlug <= 3.5.25 - Authenticated (Contributor+) PHP Object Injection CWE-502	8.8	High	2024-05-04
CVE-2024-3237	ConvertPlug <= 3.5.25 - Missing Authorization to Authenticated (Subscriber+) Limited Arbitrary Options Update CWE-862	5.4	Medium	2024-05-04

All 4 known CVE vulnerabilities affecting ConvertPlus with full Chinese analysis, references, and POCs where available.