Browse all 11 CVE security advisories affecting W3 Eden, Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.
W3 Eden, Inc. develops web-based content management and e-commerce platforms serving small to medium businesses. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for 11 recorded CVEs. The company's security posture has been characterized by inconsistent patch release cycles and delayed vulnerability remediation. While no major public security incidents have been documented, the accumulation of CVEs suggests potential systemic weaknesses in their secure development practices. Their core focus on user-friendly interfaces appears to occasionally conflict with robust security implementation, resulting in recurring preventable vulnerabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-36288 | WordPress Download Manager plugin <= 3.2.48 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities — Download Manager (WordPress plugin)CWE-352 | 5.4 | Medium | 2022-08-23 |
| CVE-2022-34658 | WordPress Download Manager plugin <= 3.2.48 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities — Download Manager (WordPress plugin)CWE-79 | 5.4 | Medium | 2022-08-23 |
| CVE-2022-34347 | WordPress Download Manager plugin <= 3.2.48 - Cross-Site Request Forgery (CSRF) vulnerability — Download Manager (WordPress plugin)CWE-352 | 4.2 | Medium | 2022-08-22 |
This page lists every published CVE security advisory associated with W3 Eden, Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.