Browse all 6 CVE security advisories affecting Galaxy Weblinks. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Galaxy Weblinks is a web development company specializing in custom enterprise solutions and digital transformation services. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with six CVEs currently recorded. The company's security posture has been characterized by inconsistent patch management and insufficient input validation in their web applications. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in their core offerings suggests potential systemic weaknesses in their development lifecycle, particularly regarding secure coding practices and timely vulnerability remediation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-60137 | WordPress Post Featured Video Plugin <= 1.7 - Cross Site Request Forgery (CSRF) Vulnerability — Post Featured VideoCWE-352 | 4.3 | Medium | 2025-09-26 |
| CVE-2025-32183 | WordPress Video Playlist For YouTube plugin <= 6.7.1 - Cross Site Scripting (XSS) vulnerability — Video Playlist For YouTubeCWE-79 | 6.5 | Medium | 2025-04-04 |
| CVE-2025-31872 | WordPress WP Clone any post type Plugin <= 3.6 - Broken Access Control vulnerability — WP Clone any post typeCWE-862 | 5.3 | Medium | 2025-04-01 |
| CVE-2025-31871 | WordPress WP Clone any post type Plugin <= 3.6 - Open Redirect vulnerability — WP Clone any post typeCWE-601 | 4.7 | Medium | 2025-04-01 |
| CVE-2023-45653 | WordPress Video Playlist For YouTube Plugin <= 6.0 is vulnerable to Cross Site Request Forgery (CSRF) — Video Playlist For YouTubeCWE-352 | 4.3 | Medium | 2023-10-16 |
| CVE-2022-42485 | WordPress Gallery with thumbnail slider Plugin <= 6.0 is vulnerable to Cross Site Scripting (XSS) — Gallery with thumbnail sliderCWE-79 | 5.4 | Medium | 2023-03-21 |
This page lists every published CVE security advisory associated with Galaxy Weblinks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.