Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

WHA — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting WHA. AI-powered Chinese analysis, POCs, and references for each vulnerability.

WHA is a web hosting automation platform enabling server management and website deployment for service providers. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure default configurations. The platform's complex architecture and extensive third-party integrations have contributed to recurring security issues. While no major public incidents have been widely documented, its multiple CVEs indicate persistent security challenges that require diligent patching and hardening by administrators to prevent potential compromises.

Top products by WHA: WHA Crossword (WordPress plugin) Word Search Puzzles game (WordPress plugin) WHA Puzzle
CVE IDTitleCVSSSeverityPublished
CVE-2022-45839 WordPress WHA Puzzle Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS) — WHA PuzzleCWE-79 5.3 Medium2023-04-18
CVE-2022-37330 WordPress WHA Crossword plugin <= 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — WHA Crossword (WordPress plugin)CWE-79 5.4 Medium2022-09-23
CVE-2022-36365 WordPress WHA Crossword plugin <= 1.1.10 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities — WHA Crossword (WordPress plugin)CWE-79 5.4 Medium2022-09-21
CVE-2022-36383 WordPress Word Search Puzzles game plugin <= 2.0.1 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities — Word Search Puzzles game (WordPress plugin)CWE-79 5.4 Medium2022-09-21
CVE-2022-37335 WordPress Word Search Puzzles game plugin <= 2.0.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — Word Search Puzzles game (WordPress plugin)CWE-79 4.8 Medium2022-09-09

This page lists every published CVE security advisory associated with WHA. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.