Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

W3 Eden, Inc. — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting W3 Eden, Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.

W3 Eden, Inc. develops web-based content management and e-commerce platforms serving small to medium businesses. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for 11 recorded CVEs. The company's security posture has been characterized by inconsistent patch release cycles and delayed vulnerability remediation. While no major public security incidents have been documented, the accumulation of CVEs suggests potential systemic weaknesses in their secure development practices. Their core focus on user-friendly interfaces appears to occasionally conflict with robust security implementation, resulting in recurring preventable vulnerabilities.

Top products by W3 Eden, Inc.: WordPress Download Manager Download Manager (WordPress plugin) Download Manager Pricing Table (WordPress plugin) Premium Packages
CVE IDTitleCVSSSeverityPublished
CVE-2024-29924 WordPress Premium Packages plugin <= 5.8.2 - Cross Site Scripting (XSS) vulnerability — Premium PackagesCWE-79 7.1 High2024-03-27
CVE-2024-29114 WordPress Download Manager plugin <= 3.2.84 - Cross Site Scripting (XSS) vulnerability — Download ManagerCWE-79 6.5 Medium2024-03-19
CVE-2022-45836 WordPress Download Manager Plugin <= 3.2.59 is vulnerable to Cross Site Scripting (XSS) — Download ManagerCWE-79 7.1 Medium2023-04-18
CVE-2022-36288 WordPress Download Manager plugin <= 3.2.48 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities — Download Manager (WordPress plugin)CWE-352 5.4 Medium2022-08-23
CVE-2022-34658 WordPress Download Manager plugin <= 3.2.48 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities — Download Manager (WordPress plugin)CWE-79 5.4 Medium2022-08-23
CVE-2022-34347 WordPress Download Manager plugin <= 3.2.48 - Cross-Site Request Forgery (CSRF) vulnerability — Download Manager (WordPress plugin)CWE-352 4.2 Medium2022-08-22
CVE-2021-36896 WordPress Pricing Table plugin <= 1.5.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — Pricing Table (WordPress plugin)CWE-79 4.8 Medium2022-04-11
CVE-2021-34638 WordPress Download Manager <= 3.1.24 Authenticated Directory Traversal — WordPress Download ManagerCWE-22 6.5 Medium2021-08-05
CVE-2021-34639 WordPress Download Manager <= 3.1.24 Authenticated Arbitrary File Upload — WordPress Download ManagerCWE-646 7.5 High2021-08-05
CVE-2017-2216 WordPress Download Manager 跨站脚本漏洞 — WordPress Download Manager 6.1 -2017-07-07
CVE-2017-2217 WordPress Download Manager 安全漏洞 — WordPress Download Manager 4.7 -2017-07-07

This page lists every published CVE security advisory associated with W3 Eden, Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.