Browse all 4 CVE security advisories affecting gopi_plus. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Gopi_plus is a software component primarily used for data processing and API integration in enterprise applications. Historically, it has been associated with multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues. The four CVEs recorded for this component highlight consistent weaknesses in input validation and access control mechanisms. No major public security incidents have been documented, though the pattern of vulnerabilities suggests potential for significant exploitation if deployed in internet-facing environments without proper hardening. Security teams should prioritize patching and implementing strict input sanitization when using this software in production systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-9198 | Wp cycle text announcement <= 8.1 - Authenticated (Contributor+) SQL Injection — Wp cycle text announcementCWE-89 | 6.5 | Medium | 2025-10-03 |
| CVE-2025-53308 | WordPress Image Slider With Description plugin <= 9.2 - Cross Site Request Forgery (CSRF) Vulnerability — Image Slider With DescriptionCWE-352 | 7.1 | High | 2025-06-27 |
| CVE-2023-5466 | Wp anything slider <= 9.1 - Authenticated (Subscriber+) SQL Injection via Shortcode — Wp anything sliderCWE-89 | 8.8 | High | 2023-11-22 |
| CVE-2023-5464 | Jquery accordion slideshow <= 8.1 - Authenticated (Subscriber+) SQL Injection via Shortcode — Jquery accordion slideshowCWE-89 | 8.8 | High | 2023-10-31 |
This page lists every published CVE security advisory associated with gopi_plus. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.