Browse all 19 CVE security advisories affecting A WP Life. AI-powered Chinese analysis, POCs, and references for each vulnerability.
A WP Life is a WordPress theme provider offering website templates for personal blogs and small business sites. Historically, the themes have been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation, with 19 CVEs recorded. Common vulnerabilities stem from insufficient input validation and improper access controls. Notable security characteristics include regular vulnerabilities in theme options and custom post types, with some instances allowing complete site compromise. While no major public incidents have been widely documented, the consistent pattern of vulnerabilities suggests potential risks for unpatched installations.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-22346 | WordPress Slider Responsive Slideshow – Image slider, Gallery slideshow plugin <= 1.5.4 - PHP Object Injection vulnerability — Slider Responsive Slideshow – Image slider, Gallery slideshowCWE-502 | 8.8 | High | 2026-02-20 |
| CVE-2024-35722 | WordPress Slider Responsive Slideshow – Image slider, Gallery slideshow plugin <= 1.4.0 - Broken Access Control vulnerability — Slider Responsive Slideshow – Image slider, Gallery slideshowCWE-862 | 4.3 | Medium | 2024-06-10 |
This page lists every published CVE security advisory associated with A WP Life. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.