Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Jeff Starr — Vulnerabilities & Security Advisories 17

Browse all 17 CVE security advisories affecting Jeff Starr. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Jeff Starr specializes in web application security, with a core focus on identifying and remediating vulnerabilities in content management systems and web frameworks. Historically, his CVE records reveal a pattern of remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and insecure authentication mechanisms. His work demonstrates a consistent emphasis on identifying server-side vulnerabilities and misconfigurations that could lead to complete system compromise. While no major public incidents are directly attributed to his findings, his contributions highlight critical security gaps in widely deployed web technologies, emphasizing the ongoing need for rigorous security testing in development lifecycles.

Top products by Jeff Starr: Simple Ajax Chat (WordPress plugin) Prismatic Dashboard Widgets Suite User Submitted Posts Contact Form X (WordPress plugin) User Submitted Posts – Enable Users to Submit Posts from the Front End Simple Download Counter Theme Switcha Simple Blog Stats Simple Statistics for Feeds Head Meta Data Simple Ajax Chat
CVE IDTitleCVSSSeverityPublished
CVE-2026-3075 WordPress Simple Ajax Chat plugin <= 20251121 - Sensitive Data Exposure vulnerability — Simple Ajax ChatCWE-497 5.3 Medium2026-02-23
CVE-2025-68509 WordPress User Submitted Posts plugin <= 20251121 - Open Redirection vulnerability — User Submitted PostsCWE-601 4.7 Medium2025-12-24
CVE-2025-66081 WordPress Head Meta Data plugin <= 20250327 - Cross Site Scripting (XSS) vulnerability — Head Meta DataCWE-79 5.9 Medium2025-11-21
CVE-2025-57892 WordPress Simple Statistics for Feeds Plugin <= 20250322 - Cross Site Request Forgery (CSRF) Vulnerability — Simple Statistics for FeedsCWE-352 4.3 Medium2025-08-22
CVE-2025-47499 WordPress Simple Blog Stats plugin <= 20250416 - Cross Site Scripting (XSS) Vulnerability — Simple Blog StatsCWE-79 6.5 Medium2025-05-07
CVE-2025-46240 WordPress Simple Download Counter plugin <= 2.2 - Cross Site Scripting (XSS) Vulnerability — Simple Download CounterCWE-79 6.5 Medium2025-04-22
CVE-2025-46239 WordPress Theme Switcha plugin <= 3.4 - Cross Site Scripting (XSS) Vulnerability — Theme SwitchaCWE-79 6.5 Medium2025-04-22
CVE-2023-7251 WordPress User Submitted Posts plugin <= 20230901 - Cross Site Scripting (XSS) vulnerability — User Submitted PostsCWE-79 6.5 Medium2024-03-26
CVE-2023-45603 WordPress User Submitted Posts Plugin <= 20230902 is vulnerable to Arbitrary File Upload — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-434 9.0 Critical2023-12-20
CVE-2023-49743 WordPress Dashboard Widgets Suite Plugin <= 3.4.1 is vulnerable to Cross Site Scripting (XSS) — Dashboard Widgets SuiteCWE-79 5.9 Medium2023-12-14
CVE-2023-26517 WordPress Dashboard Widgets Suite Plugin <= 3.2.1 is vulnerable to Cross Site Scripting (XSS) — Dashboard Widgets SuiteCWE-79 5.9 Medium2023-05-06
CVE-2022-27850 WordPress Simple Ajax Chat plugin <= 20220115 - Multiple Cross-Site Request Forgery (CSRF) vulnerability — Simple Ajax Chat (WordPress plugin)CWE-352 5.4 Medium2022-04-15
CVE-2022-27849 WordPress Simple Ajax Chat plugin <= 20220115 - Sensitive Information Disclosure vulnerability — Simple Ajax Chat (WordPress plugin)CWE-200 5.3 Medium2022-04-15
CVE-2022-25610 WordPress Simple Ajax Chat plugin <= 20220115 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability — Simple Ajax Chat (WordPress plugin)CWE-79 3.4 Low2022-03-25
CVE-2022-25601 WordPress Contact Form X plugin <= 2.4 - Reflected Cross-Site Scripting (XSS) vulnerability — Contact Form X (WordPress plugin)CWE-79 4.7 Medium2022-03-11
CVE-2021-24409 Prismatic < 2.8 - Reflected Cross-Site Scripting (XSS) — PrismaticCWE-79 6.1 -2021-07-12
CVE-2021-24408 Prismatic < 2.8 - Contributor+ Stored XSS — PrismaticCWE-79 5.4 -2021-07-12

This page lists every published CVE security advisory associated with Jeff Starr. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.