Browse all 8 CVE security advisories affecting LWS. AI-powered Chinese analysis, POCs, and references for each vulnerability.
LWS is a web application primarily used for content management and website development. Historically, it has been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with 8 CVEs documented. The application's complex plugin architecture and user permissions system have frequently contributed to security weaknesses. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities in core components suggests ongoing security challenges. Regular updates and careful configuration are recommended to mitigate risks associated with this platform.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-30541 | WordPress LWS Optimize plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability — LWS OptimizeCWE-352 | 4.3 | Medium | 2024-03-31 |
This page lists every published CVE security advisory associated with LWS. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.