Browse all 3 CVE security advisories affecting WPMobile.App. AI-powered Chinese analysis, POCs, and references for each vulnerability.
WPMobile.App serves as a mobile application framework for WordPress sites, enabling businesses to create native mobile experiences from existing web content. Historically, the application has been susceptible to cross-site scripting (XSS) and remote code execution (RCE) vulnerabilities, often stemming from insufficient input validation and insecure data handling. Security researchers have identified privilege escalation issues in authentication mechanisms, allowing unauthorized access to administrative functions. While no major public security incidents have been widely reported, the three documented CVEs highlight consistent weaknesses in input sanitization and access control, necessitating regular security updates and careful implementation by organizations using this platform.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-28932 | WordPress WPMobile.App Plugin <= 11.20 is vulnerable to Cross Site Scripting (XSS) — WPMobile.App — Android and iOS Mobile ApplicationCWE-79 | 5.9 | Medium | 2023-05-10 |
| CVE-2023-26010 | WordPress WPMobile.App Plugin <= 11.18 is vulnerable to Cross Site Scripting (XSS) — WPMobile.AppCWE-79 | 5.9 | Medium | 2023-05-04 |
| CVE-2023-22702 | WordPress WPMobile.App — Android and iOS Mobile Application Plugin <= 11.13 is vulnerable to Cross Site Scripting (XSS) — WPMobile.App — Android and iOS Mobile ApplicationCWE-79 | 6.5 | Medium | 2023-03-23 |
This page lists every published CVE security advisory associated with WPMobile.App. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.