Browse all 3 CVE security advisories affecting AWP Classifieds Team. AI-powered Chinese analysis, POCs, and references for each vulnerability.
AWP Classifieds Team operates a classified advertisements platform facilitating user transactions and listings. Historically, they have faced vulnerabilities including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation, with three CVEs currently documented. The platform's user-generated content nature makes it susceptible to input validation flaws, while its third-party integrations have introduced additional attack vectors. No major public security incidents have been reported, though the presence of multiple CVEs indicates ongoing security challenges typical of web applications handling user data and financial transactions.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-31350 | WordPress AWP Classifieds plugin <= 4.3.1 - Broken Access Control vulnerability — AWP ClassifiedsCWE-862 | 4.3 | Medium | 2024-06-09 |
| CVE-2024-32447 | WordPress AWP Classifieds plugin <= 4.3.1 - Cross Site Request Forgery (CSRF) vulnerability — AWP ClassifiedsCWE-352 | 4.3 | Medium | 2024-04-15 |
| CVE-2023-41801 | WordPress AWP Classifieds Plugin <= 4.3 is vulnerable to Cross Site Request Forgery (CSRF) — Ad Directory & Listings by AWP ClassifiedsCWE-352 | 5.4 | Medium | 2023-10-06 |
This page lists every published CVE security advisory associated with AWP Classifieds Team. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.