Browse all 4 CVE security advisories affecting pootlepress. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Pootlepress is a WordPress plugin primarily used for creating interactive content like quizzes and surveys. Historically, it has been vulnerable to multiple security issues including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation vulnerabilities. The plugin's four recorded CVEs highlight recurring input validation flaws and insufficient permission checks. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests potential risks for sites using this plugin, particularly those running outdated versions. Users should ensure they maintain the latest version to mitigate known security exposures.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-32625 | WordPress Mobile Blocks Plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability — Mobile PagesCWE-79 | 7.1 | High | 2025-04-17 |
This page lists every published CVE security advisory associated with pootlepress. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.