Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

WPBean — Vulnerabilities & Security Advisories 12

Browse all 12 CVE security advisories affecting WPBean. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Wpbean develops WordPress-focused security plugins and tools, primarily aimed at hardening websites against common web threats. Historically, its products have been associated with multiple security vulnerabilities, including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation issues, with 12 CVEs documented to date. These vulnerabilities often stem from insufficient input validation and improper access controls in plugin interfaces. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests ongoing challenges in secure development practices, potentially leaving users exposed to compromise if proper hardening measures aren't implemented.

Found 1 results / 12Clear Filters
Top products by WPBean: WPB Addons for Elementor – News Ticker, Timeline, Team & More Widgets WPB Elementor Addons WPB Popup for Contact Form 7 – Showing Contact Form 7 Popup on Button Click Request a Quote for WooCommerce – Get a Quote Button WP Post List Table Our Team Members WPB Category Slider for WooCommerce WPB Image Widget WPB Quick View for WooCommerce Advance Portfolio Grid
CVE IDTitleCVSSSeverityPublished
CVE-2025-58858 WordPress WPB Image Widget Plugin <= 1.1 - Cross Site Scripting (XSS) Vulnerability — WPB Image WidgetCWE-79 6.5 Medium2025-09-05

This page lists every published CVE security advisory associated with WPBean. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.