Browse all 6 CVE security advisories affecting Mitchell Bennis. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mitchell Bennis focuses on web application security research, identifying vulnerabilities in enterprise software and open-source projects. Their CVE history primarily includes remote code execution, cross-site scripting, and privilege escalation flaws, often in authentication mechanisms and data processing functions. Bennis has contributed to critical patches in widely used content management systems and e-commerce platforms, with several findings rated as high severity. Their work has influenced security practices in the developer community, though no major public incidents are directly attributed to their discoveries. The researcher maintains a consistent track record of responsibly disclosing vulnerabilities to affected vendors before public disclosure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-24953 | WordPress Simple File List plugin <= 6.1.15 - Arbitrary File Download vulnerability — Simple File ListCWE-22 | 6.5 | Medium | 2026-02-20 |
| CVE-2025-68591 | WordPress Simple File List plugin <= 6.1.18 - Broken Access Control vulnerability — Simple File ListCWE-862 | 5.4 | Medium | 2025-12-24 |
| CVE-2025-54021 | WordPress Simple File List plugin <= 6.1.14 - Arbitrary File Download vulnerability — Simple File ListCWE-22 | 7.5 | High | 2025-08-20 |
| CVE-2025-47450 | WordPress Simple File List plugin <= 6.1.13 - Settings Change Vulnerability — Simple File ListCWE-862 | 5.3 | Medium | 2025-05-07 |
| CVE-2023-44227 | WordPress Simple File List Plugin <= 6.1.9 is vulnerable to Arbitrary File Deletion — Simple File ListCWE-862 | 7.5 | High | 2024-04-17 |
| CVE-2023-39924 | WordPress Simple File List Plugin <= 6.1.9 is vulnerable to Cross Site Scripting (XSS) — Simple File ListCWE-79 | 5.9 | Medium | 2023-10-24 |
This page lists every published CVE security advisory associated with Mitchell Bennis. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.