Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

LambertGroup — Vulnerabilities & Security Advisories 61

Browse all 61 CVE security advisories affecting LambertGroup. AI-powered Chinese analysis, POCs, and references for each vulnerability.

LambertGroup operates primarily as a provider of enterprise resource planning and supply chain management software, facilitating complex logistical operations for mid-to-large-sized organizations. Security audits have identified a significant volume of vulnerabilities, with 61 Common Vulnerabilities and Exposures (CVEs) currently on record, indicating a history of inconsistent patch management or legacy code issues. The most prevalent vulnerability classes affecting their platforms include remote code execution, cross-site scripting, and privilege escalation flaws, which often stem from inadequate input validation and improper access controls. These defects have historically allowed attackers to bypass authentication mechanisms or execute arbitrary commands on affected servers. While no single catastrophic data breach has been publicly attributed solely to LambertGroup, the cumulative nature of these CVEs suggests systemic weaknesses in their software development lifecycle. Organizations utilizing their solutions must prioritize rigorous network segmentation and continuous monitoring to mitigate the risk of exploitation inherent in their current software architecture.

Top products by LambertGroup: Universal Video Player Universal Video Player - Addon for WPBakery Page Builder Responsive HTML5 Audio Player PRO With Playlist LambertGroup - AllInOne - Banner with Thumbnails LambertGroup - AllInOne - Banner with Playlist AllInOne - Banner Rotator LambertGroup - AllInOne - Content Slider Accordion Slider PRO Image&Video FullScreen Background LBG Zoominoutslider xPromoter Multimedia Playlist Slider Addon for WPBakery Page Builder HTML5 Radio Player - WPBakery Page Builder Addon CountDown With Image or Video Background Sticky Radio Player SHOUT Magic Responsive Slider and Carousel WordPress Famous - Responsive Image And Video Grid Gallery WordPress Plugin Magic Slider HTML5 Video Player HTML5 Video Player with Playlist & Multiple Skins UberSlider MouseInteraction UberSlider PerpetuumMobile UberSlider Ultra CLEVER - HTML5 Radio Player With History - Shoutcast and Icecast - Elementor Widget Addon UberSlider Classic Revolution Video Player With Bottom Playlist Youtube Vimeo Video Player and Slider Radio Player Shoutcast & Icecast Youtube Vimeo Video Player and Slider WP Plugin
CVE IDTitleCVSSSeverityPublished
CVE-2025-48159 WordPress Youtube Vimeo Video Player and Slider WP Plugin <= 3.8 - Cross Site Scripting (XSS) Vulnerability — Youtube Vimeo Video Player and Slider WP PluginCWE-79 7.1 High2025-08-20
CVE-2025-48163 WordPress SHOUT - HTML5 Radio Player With Ads - ShoutCast and IceCast Support <= 3.5.4 - Cross Site Scripting (XSS) Vulnerability — SHOUT - HTML5 Radio Player With Ads - ShoutCast and IceCast SupportCWE-79 7.1 High2025-08-20
CVE-2025-48168 WordPress Apollo - Sticky Full Width HTML5 Audio Player <= 3.4 - Cross Site Scripting (XSS) Vulnerability — Apollo - Sticky Full Width HTML5 Audio PlayerCWE-79 7.1 High2025-08-20
CVE-2025-48170 WordPress Universal Video Player - Addon for WPBakery Page Builder <= 3.2.1 - Cross Site Scripting (XSS) Vulnerability — Universal Video Player - Addon for WPBakery Page BuilderCWE-79 7.1 High2025-08-20
CVE-2025-53205 WordPress Radio Player Shoutcast & Icecast <= 4.4.7 - Cross Site Scripting (XSS) Vulnerability — Radio Player Shoutcast & IcecastCWE-79 7.1 High2025-08-20
CVE-2025-53212 WordPress Revolution Video Player With Bottom Playlist <= 2.9.2 - Cross Site Scripting (XSS) Vulnerability — Revolution Video Player With Bottom PlaylistCWE-79 7.1 High2025-08-20
CVE-2025-53559 WordPress Universal Video Player - Addon for WPBakery Page Builder <= 3.2.1 - Cross Site Scripting (XSS) Vulnerability — Universal Video Player - Addon for WPBakery Page BuilderCWE-79 7.1 High2025-08-20
CVE-2025-53562 WordPress Universal Video Player - Addon for WPBakery Page Builder <= 3.2.1 - Cross Site Scripting (XSS) Vulnerability — Universal Video Player - Addon for WPBakery Page BuilderCWE-79 7.1 High2025-08-20
CVE-2025-53563 WordPress Youtube Vimeo Video Player and Slider <= 3.8 - Cross Site Scripting (XSS) Vulnerability — Youtube Vimeo Video Player and SliderCWE-79 7.1 High2025-08-20
CVE-2025-53564 WordPress HTML5 Radio Player - WPBakery Page Builder Addon <= 2.5 - Cross Site Scripting (XSS) Vulnerability — HTML5 Radio Player - WPBakery Page Builder AddonCWE-79 7.1 High2025-08-20
CVE-2025-54056 WordPress Responsive HTML5 Audio Player PRO With Playlist <= 3.5.8 - Cross Site Scripting (XSS) Vulnerability — Responsive HTML5 Audio Player PRO With PlaylistCWE-79 7.1 High2025-08-20
CVE-2025-30626 WordPress Multimedia Playlist Slider Addon for WPBakery Page Builder <= 2.1 - Cross Site Scripting (XSS) Vulnerability — Multimedia Playlist Slider Addon for WPBakery Page BuilderCWE-79 7.1 High2025-08-14
CVE-2025-31070 WordPress HTML5 Radio Player - WPBakery Page Builder Addon plugin <= 2.5 - Arbitrary File Download vulnerability — HTML5 Radio Player - WPBakery Page Builder AddonCWE-22 7.5 High2025-07-16
CVE-2025-31057 WordPress Universal Video Player plugin <= 1.4.0 - Reflected Cross Site Scripting (XSS) vulnerability — Universal Video PlayerCWE-79 7.1 High2025-06-09
CVE-2025-31058 WordPress Revolution Video Player plugin <= 2.9.2 - Reflected Cross Site Scripting (XSS) vulnerability — Revolution Video PlayerCWE-79 7.1 High2025-06-09
CVE-2025-31426 WordPress Sticky Radio Player plugin <= 3.4 - Reflected Cross Site Scripting (XSS) vulnerability — Sticky Radio PlayerCWE-79 7.1 High2025-06-09
CVE-2025-31635 WordPress CLEVER plugin <= 2.6 - Arbitrary File Download Vulnerability — CLEVERCWE-22 7.5 High2025-06-09
CVE-2025-31917 WordPress Universal Video Player plugin <= 3.8.3 - Reflected Cross Site Scripting (XSS) vulnerability — Universal Video PlayerCWE-79 7.1 High2025-06-09
CVE-2025-31925 WordPress SHOUT plugin <= 3.5.3 - Reflected Cross Site Scripting (XSS) vulnerability — SHOUTCWE-79 7.1 High2025-06-09
CVE-2025-31637 WordPress SHOUT plugin <= 3.5.3 - SQL Injection Vulnerability — SHOUTCWE-89 8.5 High2025-05-16
CVE-2025-31640 WordPress Magic Responsive Slider and Carousel WordPress plugin < 1.6 - SQL Injection Vulnerability — Magic Responsive Slider and Carousel WordPressCWE-89 8.5 High2025-05-16
CVE-2025-31641 WordPress UberSlider plugin <= 2.3 - SQL Injection Vulnerability — UberSliderCWE-89 8.5 High2025-05-16
CVE-2025-31926 WordPress Sticky Radio Player plugin <= 3.4 - SQL Injection Vulnerability — Sticky Radio PlayerCWE-89 8.5 High2025-05-16
CVE-2025-31928 WordPress Multimedia Responsive Carousel with Image Video Audio Support plugin <= 2.6.0 - SQL Injection Vulnerability — Multimedia Responsive Carousel with Image Video Audio SupportCWE-89 8.5 High2025-05-16
CVE-2025-32287 WordPress Responsive HTML5 Audio Player PRO With Playlist plugin <= 3.5.7 - SQL Injection Vulnerability — Responsive HTML5 Audio Player PRO With PlaylistCWE-89 8.5 High2025-05-16
CVE-2025-32290 WordPress Sticky HTML5 Music Player plugin <= 3.1.6 - SQL Injection Vulnerability — Sticky HTML5 Music PlayerCWE-89 8.5 High2025-05-16
CVE-2025-32301 WordPress CountDown Pro WP Plugin <= 2.7 - SQL Injection Vulnerability — CountDown Pro WP PluginCWE-89 8.5 High2025-05-16
CVE-2025-32306 WordPress Radio Player Shoutcast & Icecast theme <= 4.4.6 - SQL Injection Vulnerability — Radio Player Shoutcast & Icecast WordPress PluginCWE-89 8.5 High2025-05-16
CVE-2025-32307 WordPress Chameleon HTML5 Audio Player With/Without Playlist plugin <= 3.5.6 - SQL Injection Vulnerability — Chameleon HTML5 Audio Player With/Without PlaylistCWE-89 8.5 High2025-05-16
CVE-2025-47567 WordPress Video Player & FullScreen Video Background plugin <= 2.4.1 - SQL Injection vulnerability — Video Player & FullScreen Video BackgroundCWE-89 7.6 High2025-05-16

This page lists every published CVE security advisory associated with LambertGroup. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.