Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

PluginOps — Vulnerabilities & Security Advisories 15

Browse all 15 CVE security advisories affecting PluginOps. AI-powered Chinese analysis, POCs, and references for each vulnerability.

PluginOps develops WordPress management tools focused on plugin operations and security monitoring. The platform has recorded 15 CVEs, primarily involving remote code execution, cross-site scripting, and privilege escalation vulnerabilities. Historically, these issues often stem from insufficient input validation and improper access controls in plugin management functions. While no major public security incidents have been documented, the consistent presence of critical vulnerabilities in their plugin ecosystem suggests ongoing challenges in secure development practices. The company's core value proposition centers on automating plugin updates and security scanning, though their own history of vulnerabilities highlights the complex security landscape surrounding third-party WordPress integrations.

Top products by PluginOps: Landing Page Builder Feather Login Page MailChimp Subscribe Forms MailChimp Subscribe Form Landing Page Builder – Lead Page – Optin Page – Squeeze Page – WordPress Landing Pages MailChimp Subscribe Form, Optin Builder, PopUp Builder, Form Builder Social Locker Top Bar Testimonial Slider
CVE IDTitleCVSSSeverityPublished
CVE-2026-24620 WordPress Landing Page Builder plugin <= 1.5.3.4 - Cross Site Scripting (XSS) vulnerability — Landing Page BuilderCWE-79 5.9 Medium2026-01-23
CVE-2025-62107 WordPress Feather Login Page plugin <= 1.1.7 - Cross Site Request Forgery (CSRF) vulnerability — Feather Login PageCWE-352 4.3 Medium2025-12-22
CVE-2025-60126 WordPress Testimonial Slider Plugin <= 3.5.8.6 - Local File Inclusion Vulnerability — Testimonial SliderCWE-98 8.8 High2025-09-26
CVE-2025-30581 WordPress Top Bar plugin <= 3.3 - Broken Access Control Vulnerability — Top BarCWE-862 5.3 Medium2025-03-24
CVE-2025-22727 WordPress MailChimp Subscribe Form plugin <= 4.1 - Cross Site Scripting (XSS) vulnerability — MailChimp Subscribe FormsCWE-79 6.5 Medium2025-01-21
CVE-2024-51858 WordPress Social Locker plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability — Social LockerCWE-79 6.5 Medium2024-11-19
CVE-2024-43211 WordPress MailChimp Subscribe Form plugin <=4.0.9.9 - Stored Cross-Site Scripting vulnerability — MailChimp Subscribe FormsCWE-79 5.9 Medium2024-11-01
CVE-2024-43345 WordPress Landing Page Builder plugin <= 1.5.2.0 - Local File Inclusion vulnerability — Landing Page BuilderCWE-22 7.5 High2024-08-19
CVE-2024-34752 WordPress Landing Page Builder <= 1.5.1.8 - Cross Site Scripting (XSS) vulnerability — Landing Page BuilderCWE-79 7.1 High2024-05-17
CVE-2024-31923 WordPress Feather Login Page plugin <= 1.1.5 - Cross Site Request Forgery (CSRF) vulnerability — Feather Login PageCWE-352 4.3 Medium2024-04-15
CVE-2024-30452 WordPress Landing Page Builder plugin <= 1.5.1.7 - Cross Site Scripting (XSS) vulnerability — Landing Page BuilderCWE-79 5.9 Medium2024-03-29
CVE-2023-32517 WordPress MailChimp Subscribe Forms Plugin <= 4.0.9.3 is vulnerable to Open Redirection — MailChimp Subscribe Form, Optin Builder, PopUp Builder, Form BuilderCWE-601 4.7 Medium2023-12-29
CVE-2023-48325 WordPress Landing Page Builder Plugin <= 1.5.1.5 is vulnerable to Open Redirection — Landing Page Builder – Lead Page – Optin Page – Squeeze Page – WordPress Landing PagesCWE-601 4.7 Medium2023-12-07
CVE-2023-40675 WordPress Landing Page Builder Plugin <= 1.5.1.2 is vulnerable to Cross Site Scripting (XSS) — Landing Page BuilderCWE-79 5.9 Medium2023-09-27
CVE-2023-33328 WordPress MailChimp Subscribe Forms Plugin <= 4.0.9.1 is vulnerable to Cross Site Scripting (XSS) — MailChimp Subscribe FormCWE-79 5.9 Medium2023-05-28

This page lists every published CVE security advisory associated with PluginOps. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.