Browse all 8 CVE security advisories affecting inc2734. AI-powered Chinese analysis, POCs, and references for each vulnerability.
inc2734 is primarily associated with WordPress themes and plugins, serving as a core component for numerous business websites. Historically, the project has been vulnerable to multiple security issues, including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation vulnerabilities. These weaknesses have allowed attackers to compromise websites, steal data, and gain unauthorized access. While no major public incidents have been widely documented, the consistent pattern of vulnerabilities across multiple CVEs highlights ongoing security challenges. The project's widespread adoption makes it a persistent target for exploitation, requiring vigilant maintenance and prompt patching by users to mitigate potential risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-1056 | Snow Monkey Forms <= 12.0.3 - Unauthenticated Arbitrary File Deletion via Path Traversal — Snow Monkey FormsCWE-22 | 9.8 | Critical | 2026-01-28 |
This page lists every published CVE security advisory associated with inc2734. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.