Browse all 7 CVE security advisories affecting WPWebinarSystem. AI-powered Chinese analysis, POCs, and references for each vulnerability.
wpwebinarsystem is a WordPress plugin designed for hosting and managing webinars. Historically, it has been vulnerable to multiple security issues, including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. These weaknesses often stem from insufficient input validation and improper access controls. The plugin has accumulated seven CVE records, highlighting ongoing security concerns. Notable incidents include cases where unauthenticated attackers could execute arbitrary code or steal sensitive user data due to these vulnerabilities. Security researchers have consistently identified similar patterns in its codebase, suggesting systemic issues rather than isolated flaws.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-62972 | WordPress WebinarPress plugin <= 1.33.28 - Broken Access Control vulnerability — WebinarPressCWE-862 | 4.3 | Medium | 2025-10-27 |
| CVE-2025-47635 | WordPress WebinarPress plugin <= 1.33.28 - Server Side Request Forgery (SSRF) Vulnerability — WebinarPressCWE-918 | 5.5 | Medium | 2025-05-07 |
| CVE-2025-32693 | WordPress WebinarPress plugin <= 1.33.28 - Open Redirection Vulnerability — WebinarPressCWE-601 | 4.7 | Medium | 2025-04-09 |
| CVE-2025-31883 | WordPress WebinarPress plugin <= 1.33.28 - Cross Site Scripting (XSS) vulnerability — WebinarPressCWE-79 | 5.9 | Medium | 2025-04-01 |
| CVE-2025-31882 | WordPress Webinar Plugin <= 1.33.28 - Broken Access Control vulnerability — WebinarPressCWE-862 | 4.3 | Medium | 2025-04-01 |
This page lists every published CVE security advisory associated with WPWebinarSystem. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.