Browse all 3 CVE security advisories affecting SeedProd LLC. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SeedProd LLC develops WordPress landing page and coming soon plugins, with their core use case being website pre-launch content management. Historically, their products have been susceptible to multiple cross-site scripting (XSS) vulnerabilities and remote code execution (RCE) flaws, often stemming from insufficient input sanitization and improper capability checks. The company has addressed three CVEs to date, with notable security characteristics including insufficient privilege escalation protections in administrative functions. While no major public security incidents have been widely reported, the pattern of vulnerabilities suggests ongoing challenges in secure coding practices, particularly regarding user input handling and access control mechanisms within their WordPress ecosystem.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-54285 | WordPress SeedProd Pro plugin <= 6.18.10 - Remote Code Execution (RCE) vulnerability — SeedProd ProCWE-434 | 9.1 | Critical | 2024-12-16 |
| CVE-2024-54284 | WordPress SeedProd Pro plugin <= 6.18.10 - SQL Injection vulnerability — SeedProd ProCWE-89 | 7.6 | High | 2024-12-16 |
| CVE-2024-54283 | WordPress SeedProd Pro plugin <= 6.18.10 - SQL Injection vulnerability — SeedProd ProCWE-89 | 7.6 | High | 2024-12-16 |
This page lists every published CVE security advisory associated with SeedProd LLC. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.