Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Mestres do WP — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting Mestres do WP. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Mestres do WP develops WordPress plugins and themes, primarily serving website owners seeking enhanced functionality. Historically, their products have frequently contained cross-site scripting (XSS) and remote code execution (RCE) vulnerabilities, often stemming from insufficient input validation and insecure direct object references. The group has demonstrated a pattern of releasing code with inadequate security controls, leading to multiple high-severity flaws. Their plugins have been exploited in attacks targeting WordPress sites, with attackers leveraging these vulnerabilities to compromise web servers and deploy malware. The consistent discovery of critical issues in their products has established a concerning security reputation within the WordPress security community.

Top products by Mestres do WP: Checkout Mestres WP
CVE IDTitleCVSSSeverityPublished
CVE-2025-32695 WordPress Checkout Mestres WP plugin <= 8.7.5 - Privilege Escalation Vulnerability — Checkout Mestres WPCWE-266 9.8 Critical2025-04-09
CVE-2024-44030 WordPress Checkout Mestres WP plugin <= 8.6 - Local File Inclusion vulnerability — Checkout Mestres WPCWE-22 7.2 High2024-10-02
CVE-2023-51472 WordPress Checkout Mestres WP plugin <= 7.1.9.7 - Unauthenticated Account Takeover vulnerability — Checkout Mestres WPCWE-287 9.8 Critical2024-04-24
CVE-2023-51471 WordPress Checkout Mestres WP plugin <= 7.1.9.7 - Unauthenticated Arbitrary Options Update vulnerability — Checkout Mestres WPCWE-287 8.2 High2024-04-24
CVE-2023-51469 WordPress Checkout Mestres WP Plugin <= 7.1.9.6 is vulnerable to SQL Injection — Checkout Mestres WPCWE-89 9.3 Critical2023-12-31

This page lists every published CVE security advisory associated with Mestres do WP. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.