Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CridioStudio — Vulnerabilities & Security Advisories 19

Browse all 19 CVE security advisories affecting CridioStudio. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CridioStudio develops digital asset management solutions primarily for creative industries, enabling organizations to organize and distribute media content. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for 19 recorded CVEs. Notable security characteristics include insufficient input validation and inadequate access controls in several components. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities across different versions suggests potential risks for organizations relying on their platform without implementing additional security measures.

Top products by CridioStudio: ListingPro ListingPro Reviews ListingPro Lead Form
CVE IDTitleCVSSSeverityPublished
CVE-2026-28122 WordPress ListingPro plugin <= 2.9.8 - Reflected Cross Site Scripting (XSS) vulnerability — ListingProCWE-79 7.1 High2026-03-05
CVE-2025-69051 WordPress ListingPro Reviews theme <= 1.7 - Reflected Cross Site Scripting (XSS) vulnerability — ListingPro ReviewsCWE-79 7.1 High2026-01-22
CVE-2025-64376 WordPress ListingPro theme < 2.9.10 - Cross Site Scripting (XSS) vulnerability — ListingProCWE-79 7.1 High2025-12-18
CVE-2025-64378 WordPress ListingPro theme < 2.9.10 - Broken Access Control vulnerability — ListingProCWE-862 7.1 High2025-12-18
CVE-2025-64377 WordPress ListingPro theme < 2.9.10 - Local File Inclusion vulnerability — ListingProCWE-98 8.1 High2025-12-18
CVE-2025-63039 WordPress ListingPro theme <= 2.9.9 - Broken Access Control vulnerability — ListingProCWE-862 6.5 Medium2025-12-18
CVE-2025-63048 WordPress ListingPro Lead Form plugin <= 1.0.7 - Cross Site Scripting (XSS) vulnerability — ListingPro Lead FormCWE-79 6.5 Medium2025-12-09
CVE-2025-63049 WordPress ListingPro Lead Form plugin <= 1.0.7 - Broken Access Control vulnerability — ListingPro Lead FormCWE-862 5.3 Medium2025-12-09
CVE-2025-63047 WordPress ListingPro theme <= 2.9.9 - Broken Access Control vulnerability — ListingProCWE-862 5.3 Medium2025-12-09
CVE-2025-63046 WordPress ListingPro plugin <= 2.9.9 - Cross Site Scripting (XSS) vulnerability — ListingProCWE-79 6.5 Medium2025-12-09
CVE-2025-60103 WordPress ListingPro plugin <= 2.9.8 - Broken Access Control vulnerability — ListingProCWE-862 5.4 Medium2025-09-26
CVE-2025-58667 WordPress ListingPro Reviews plugin < 2.9.11 - Broken Access Control vulnerability — ListingPro ReviewsCWE-862 5.4 Medium2025-09-22
CVE-2024-39623 WordPress ListingPro theme <= 2.9.4 - Cross Site Request Forgery (CSRF) to Account Takeover vulnerability — ListingProCWE-352 8.8 High2025-01-02
CVE-2024-39622 WordPress ListingPro theme <= 2.9.4 - Unauthenticated SQL Injection vulnerability — ListingProCWE-89 9.3 Critical2024-08-29
CVE-2024-39620 WordPress ListingPro plugin <= 2.9.4 - SQL Injection vulnerability — ListingProCWE-89 8.5 High2024-08-29
CVE-2024-38795 WordPress ListingPro plugin <= 2.9.4 - Unauthenticated SQL Injection vulnerability — ListingProCWE-89 9.3 Critical2024-08-29
CVE-2024-39619 WordPress ListingPro plugin <= 2.9.4 - Unauthenticated Local File Inclusion vulnerability — ListingProCWE-22 9.0 Critical2024-08-01
CVE-2024-39621 WordPress ListingPro plugin <= 2.9.4 - Local File Inclusion vulnerability — ListingProCWE-22 8.0 High2024-08-01
CVE-2024-39624 WordPress ListingPro theme <= 2.9.4 - Local File Inclusion vulnerability — ListingProCWE-22 8.5 High2024-08-01

This page lists every published CVE security advisory associated with CridioStudio. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.