Browse all 22 CVE security advisories affecting Wpsoul. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Wpsoul primarily develops WordPress plugins and themes, focusing on e-commerce solutions and content management enhancements. Its extensive portfolio has resulted in twenty-two recorded Common Vulnerabilities and Exposures, highlighting significant security gaps in its development lifecycle. Historically, these flaws predominantly involve remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access controls within plugin code. Notable incidents include critical remote code execution flaws that allowed attackers to fully compromise affected websites, leading to data breaches and defacement. The recurring nature of these issues suggests systemic weaknesses in code review processes and dependency management. Consequently, administrators are advised to prioritize regular updates and implement strict security monitoring to mitigate the high risk associated with these widely deployed but vulnerable components.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-43942 | WordPress Greenshift Query and Meta Addon plugin < 3.9.2 - Subscriber+ SQL Injection vulnerability — Greenshift Query and Meta AddonCWE-89 | 8.5 | High | 2024-08-29 |
This page lists every published CVE security advisory associated with Wpsoul. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.