Browse all 4 CVE security advisories affecting Steve Truman. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Steve Truman focuses on web application security, with a core use case centered on identifying and mitigating vulnerabilities in enterprise systems. Historically, his work has commonly exposed remote code execution, cross-site scripting, and privilege escalation flaws, contributing to four CVEs. His security analyses emphasize thorough input validation and secure coding practices. While no major public incidents are directly attributed to his findings, his CVEs highlight persistent risks in unpatched systems and misconfigured access controls. Truman's research consistently underscores the importance of defense-in-depth strategies and timely remediation to prevent exploitation of common web vulnerabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-24526 | WordPress Email Inquiry & Cart Options for WooCommerce plugin <= 3.4.3 - Cross Site Scripting (XSS) vulnerability — Email Inquiry & Cart Options for WooCommerceCWE-79 | 6.5 | Medium | 2026-01-23 |
| CVE-2025-63034 | WordPress Page View Count plugin <= 2.9.0 - Settings Change vulnerability — Page View CountCWE-862 | 5.4 | Medium | 2025-12-09 |
| CVE-2025-58800 | WordPress WP Email Template plugin <= 2.8.5 - Cross Site Request Forgery (CSRF) vulnerability — WP Email TemplateCWE-352 | 4.3 | Medium | 2025-09-05 |
| CVE-2025-28967 | WordPress Contact Us page - Contact people LITE plugin <= 3.7.4 - SQL Injection Vulnerability — Contact Us page - Contact people LITECWE-89 | 8.5 | High | 2025-07-04 |
This page lists every published CVE security advisory associated with Steve Truman. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.