Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

WPCenter — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting WPCenter. AI-powered Chinese analysis, POCs, and references for each vulnerability.

WPCenter is a WordPress management platform designed for centralized website administration and security monitoring. Historically, the platform has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access controls. While no major public security incidents have been widely documented, the three CVEs on record highlight persistent concerns around authentication mechanisms and plugin integration security. The platform's architecture, which manages multiple WordPress installations, increases its attack surface, making consistent security updates and input sanitization critical for maintaining operational integrity.

Top products by WPCenter: AffiliateX AffiliateX – Amazon Affiliate Plugin
CVE IDTitleCVSSSeverityPublished
CVE-2025-13859 AffiliateX 1.0.0 - 1.3.9.3 - Authenticated (Subscriber+) Missing Authorization to Stored Cross-Site Scripting via save_customization_settings — AffiliateX – Amazon Affiliate PluginCWE-862 6.4 Medium2026-01-15
CVE-2025-69346 WordPress AffiliateX plugin <= 1.3.9.3 - Broken Access Control vulnerability — AffiliateXCWE-862 4.3 Medium2026-01-06
CVE-2024-49692 WordPress AffiliateX plugin <= 1.2.9 - Cross Site Scripting (XSS) vulnerability — AffiliateXCWE-79 6.5 Medium2024-10-29

This page lists every published CVE security advisory associated with WPCenter. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.