Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ShapedPlugin LLC — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting ShapedPlugin LLC. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ShapedPlugin LLC develops WordPress plugins for enhancing website functionality, with a core use case of adding interactive features to content management systems. Historically, their products have been susceptible to multiple remote code execution (RCE) vulnerabilities, cross-site scripting (XSS), and privilege escalation flaws, often stemming from insufficient input validation and improper access controls. The company has accumulated five CVEs to date, reflecting recurring security gaps in their plugin architecture. While no major public security incidents have been documented, their vulnerability history indicates a pattern of security weaknesses that could potentially lead to complete site compromise if exploited.

Top products by ShapedPlugin LLC: WP Tabs – Responsive Tabs Plugin for WordPress Category Slider for WooCommerce Real Testimonials WP Tabs Quick View for WooCommerce
CVE IDTitleCVSSSeverityPublished
CVE-2025-58228 WordPress Quick View for WooCommerce Plugin <= 2.2.16 - Cross Site Scripting (XSS) Vulnerability — Quick View for WooCommerceCWE-79 6.5 Medium2025-09-22
CVE-2025-48134 WordPress WP Tabs plugin <= 2.2.12 - PHP Object Injection Vulnerability — WP TabsCWE-502 7.2 High2025-05-16
CVE-2025-22269 WordPress Real Testimonials plugin <= 3.1.6 - Cross Site Scripting (XSS) vulnerability — Real TestimonialsCWE-79 6.5 Medium2025-04-15
CVE-2023-41132 WordPress Category Slider for WooCommerce plugin <= 1.4.15 - Broken Access Control vulnerability — Category Slider for WooCommerceCWE-862 4.3 Medium2024-12-13
CVE-2023-52124 WordPress WP Tabs Plugin <= 2.2.0 is vulnerable to Cross Site Scripting (XSS) — WP Tabs – Responsive Tabs Plugin for WordPressCWE-79 6.5 Medium2024-01-05

This page lists every published CVE security advisory associated with ShapedPlugin LLC. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.