Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

mndpsingh287 — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting mndpsingh287. AI-powered Chinese analysis, POCs, and references for each vulnerability.

mndpsingh287 is a security researcher focused on identifying vulnerabilities in web applications and enterprise software. Their work primarily centers on uncovering flaws that could lead to remote code execution, cross-site scripting, and privilege escalation. With 13 CVEs attributed to them, they have demonstrated expertise in finding critical weaknesses across multiple platforms. While no major public incidents are directly linked to their findings, their contributions have helped address significant security gaps in various systems. Their research consistently highlights common misconfigurations and input validation flaws, making their work valuable for improving overall software security postures.

Top products by mndpsingh287: File Manager Theme Editor WP Mail Track Page Scroll
CVE IDTitleCVSSSeverityPublished
CVE-2026-39640 WordPress Theme Editor plugin <= 3.2 - Cross Site Request Forgery (CSRF) to Remote Code Execution vulnerability — Theme EditorCWE-352 9.6 Critical2026-04-08
CVE-2025-68008 WordPress WP Mail plugin <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability — WP MailCWE-79 7.1 High2026-01-22
CVE-2025-9890 Theme Editor <= 3.0 - Cross-Site Request Forgery to Remote Code Execution — Theme EditorCWE-352 8.8 High2025-10-18
CVE-2025-58822 WordPress WP Mail Plugin <= 1.3 - Cross Site Scripting (XSS) Vulnerability — WP MailCWE-79 6.5 Medium2025-09-05
CVE-2025-23536 WordPress Track Page Scroll plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability — Track Page ScrollCWE-79 7.1 High2025-03-03
CVE-2024-37254 WordPress WP File Manager plugin <= 7.2.7 - Broken Access Control vulnerability — File ManagerCWE-862 4.3 Medium2024-11-01
CVE-2018-25105 File Manager <= 3.0 - Unauthenticated Arbitrary File Upload/Download — File ManagerCWE-862 9.8 Critical2024-10-16
CVE-2022-2440 Theme Editor <= 2.8 - Authenticated (Admin+) PHAR Deserialization — Theme EditorCWE-502 7.2 High2024-08-29
CVE-2024-2654 File Manager <= 7.2.5 - Authenticated (Administrator+) Directory Traversal — File ManagerCWE-35 6.8 Medium2024-04-09
CVE-2023-6091 WordPress Theme Editor plugin <= 2.7.1 - Arbitrary File Upload vulnerability — Theme EditorCWE-434 7.2 High2024-03-26
CVE-2024-1538 File Manager <= 7.2.4 - Cross-Site Request Forgery to Local JS File Inclusion — File ManagerCWE-352 8.8 High2024-03-21
CVE-2023-6825 File Manager And File Manager Pro (Multiple Versions) - Directory Traversal — File ManagerCWE-23 9.9 Critical2024-03-13
CVE-2024-0761 File Manager <= 7.2.1 - Sensitive Information Exposure via Backup Filenames — File ManagerCWE-330 8.1 High2024-02-05

This page lists every published CVE security advisory associated with mndpsingh287. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.