Browse all 3 CVE security advisories affecting WP-EXPERTS.IN. AI-powered Chinese analysis, POCs, and references for each vulnerability.
WP-EXPERTS.IN specializes in WordPress security services, offering vulnerability assessments and hardening solutions for WordPress websites. Historically, their recorded vulnerabilities include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation weaknesses, often stemming from insufficient input validation and improper access controls. The organization has demonstrated a pattern of security incidents related to plugin and theme vulnerabilities, with three CVEs documenting these flaws. Their security characteristics reflect common WordPress ecosystem risks, emphasizing the need for regular updates and secure coding practices. No major public security incidents have been reported beyond the documented CVE entries, suggesting their vulnerabilities were identified and addressed through standard disclosure processes.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-64249 | WordPress Protect WP Admin plugin <= 4.1 - Broken Access Control vulnerability — Protect WP AdminCWE-862 | 4.3 | Medium | 2025-12-16 |
| CVE-2025-57904 | WordPress Sales Count Manager for WooCommerce plugin <= 2.6 - Cross Site Scripting (XSS) vulnerability — Sales Count Manager for WooCommerceCWE-79 | 5.9 | Medium | 2025-09-22 |
| CVE-2024-51622 | WordPress WP EASY RECIPE plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability — WP EASY RECIPECWE-79 | 6.5 | Medium | 2024-11-09 |
This page lists every published CVE security advisory associated with WP-EXPERTS.IN. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.