Browse all 38 CVE security advisories affecting WPdevart. AI-powered Chinese analysis, POCs, and references for each vulnerability.
WpDevArt is a software vendor specializing in premium plugins and extensions for the WordPress content management system. Their portfolio includes tools for page building, SEO optimization, and e-commerce functionality, targeting developers and site administrators seeking enhanced platform capabilities. Security audits have identified thirty-seven Common Vulnerabilities and Exposures (CVEs) associated with their products, indicating a persistent pattern of security deficiencies. Historically, these vulnerabilities frequently manifest as remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and inadequate access controls within the codebase. While no single catastrophic data breach has been publicly attributed solely to WpDevArt, the high volume of disclosed CVEs suggests systemic issues in their development lifecycle. Users are advised to exercise caution, ensuring all components are regularly updated and monitored for known exploits to mitigate potential compromise of their WordPress environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-24004 | WordPress Image and Video Lightbox, Image PopUp Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS) — Image and Video Lightbox, Image PopUpCWE-79 | 5.9 | Medium | 2023-04-06 |
This page lists every published CVE security advisory associated with WPdevart. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.