Browse all 3 CVE security advisories affecting HuangYe WuDeng. AI-powered Chinese analysis, POCs, and references for each vulnerability.
HuangYe WuDeng is a Chinese software vendor primarily focused on developing enterprise resource planning (ERP) and supply chain management solutions. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access controls. While no major public security incidents have been widely documented, the three CVEs associated with HuangYe WuDeng highlight recurring issues in their authentication mechanisms and data handling practices. Their security posture appears typical for mid-market enterprise software, with vulnerabilities primarily centered on web application interfaces and database interactions.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-46530 | WordPress Hacklog Remote Attachment plugin <= 1.3.2 - Cross Site Request Forgery (CSRF) Vulnerability — Hacklog Remote AttachmentCWE-352 | 7.1 | High | 2025-04-24 |
| CVE-2025-30576 | WordPress Hacklog Remote Image Autosave plugin <= 2.1.0 - Cross Site Request Forgery (CSRF) Vulnerability — Hacklog Remote Image AutosaveCWE-352 | 4.3 | Medium | 2025-03-24 |
| CVE-2024-52401 | WordPress Hacklog DownloadManager plugin <=2.1.4 - CSRF to Arbitrary File Upload vulnerability — Hacklog DownloadManagerCWE-352 | 9.6 | Critical | 2024-11-19 |
This page lists every published CVE security advisory associated with HuangYe WuDeng. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.