Browse all 3 CVE security advisories affecting The African Boss. AI-powered Chinese analysis, POCs, and references for each vulnerability.
The African Boss primarily serves as a content management system for small to medium African businesses, enabling website creation and management. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, with three CVEs documented. The platform's security characteristics include insufficient input validation and inadequate access controls. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for unpatched deployments. The African Boss remains a concern for organizations requiring robust security due to its history of exploitable weaknesses that could lead to complete system compromise.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49041 | WordPress Get Cash plugin <= 3.2.3 - Broken Access Control vulnerability — Get CashCWE-862 | 6.5 | Medium | 2025-12-18 |
| CVE-2025-58823 | WordPress Get Cash plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability — Get CashCWE-79 | 6.5 | Medium | 2025-09-05 |
| CVE-2023-37969 | WordPress Checkout with Zelle on Woocommerce plugin <= 3.1 - Broken Access Control vulnerability — Checkout with Zelle on WoocommerceCWE-862 | 5.3 | Medium | 2024-12-13 |
This page lists every published CVE security advisory associated with The African Boss. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.