Browse all 3 CVE security advisories affecting All In One WP Security & Firewall Team. AI-powered Chinese analysis, POCs, and references for each vulnerability.
The All In One WP Security & Firewall Team develops a WordPress security plugin focused on protecting websites from common web vulnerabilities. Historically, their codebase has been associated with vulnerabilities including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. The team maintains a moderate security record with three CVEs documented, primarily related to input validation and access control issues. Their plugin offers firewall protection, login security features, and file integrity checks, though security researchers have noted occasional lapses in sanitization and permission handling. The team has addressed reported vulnerabilities through updates, maintaining a presence in the WordPress security ecosystem while demonstrating typical challenges faced by comprehensive security solutions in complex web environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-52147 | WordPress All-In-One Security (AIOS) plugin <= 5.2.4 - Secret Login Page Location Disclosure on Multisites vulnerability — All In One WP Security & FirewallCWE-200 | 3.7 | Low | 2024-06-04 |
| CVE-2024-30468 | WordPress All-In-One Security (AIOS) – Security and Firewall plugin <= 5.2.6 - Cross Site Request Forgery (CSRF) vulnerability — All In One WP Security & FirewallCWE-352 | 4.3 | Medium | 2024-03-29 |
| CVE-2022-44737 | WordPress All In One WP Security plugin <= 5.1.0 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities — All-In-One Security (AIOS) – Security and Firewall (WordPress plugin)CWE-352 | 6.5 | Medium | 2022-11-22 |
This page lists every published CVE security advisory associated with All In One WP Security & Firewall Team. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.