Browse all 18 CVE security advisories affecting PressTigers. AI-powered Chinese analysis, POCs, and references for each vulnerability.
PressTigers is a digital marketing agency specializing in WordPress development and SEO services, with 18 CVEs recorded in its history. Common vulnerabilities include stored cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, often stemming from insufficient input validation and insecure authentication mechanisms. The company's plugins have faced multiple security incidents, including a 2021 XSS vulnerability affecting over 10,000 sites and a 2019 RCE weakness in a popular SEO plugin. These issues highlight recurring patterns in sanitization and access control failures, posing risks to client websites and data. PressTigers has addressed some vulnerabilities through patches, but the historical pattern suggests ongoing challenges in secure coding practices.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-14353 | ZIP Code Based Content Protection <= 1.0.2 - Unauthenticated SQL Injection via 'zipcode' Parameter — ZIP Code Based Content ProtectionCWE-89 | 7.5 | High | 2026-03-07 |
| CVE-2025-59008 | WordPress ZIP Code Based Content Protection plugin <= 1.0.0 - SQL Injection vulnerability — ZIP Code Based Content ProtectionCWE-89 | 7.6 | High | 2025-09-09 |
This page lists every published CVE security advisory associated with PressTigers. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.