Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

techlabpro1 — Vulnerabilities & Security Advisories 17

Browse all 17 CVE security advisories affecting techlabpro1. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Techlabpro1 primarily serves as a software development platform enabling rapid application creation and deployment. Historically, the platform has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, contributing to its 17 CVE count. Security researchers have identified consistent patterns in input validation weaknesses and insufficient access controls across its components. While no major public security incidents have been widely documented, the accumulation of CVEs suggests ongoing challenges in secure coding practices. The platform's extensive plugin architecture appears particularly prone to introducing additional attack vectors, requiring careful configuration and regular updates to mitigate risks.

Top products by techlabpro1: Classified Listing – AI-Powered Classified ads & Business Directory Plugin The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid Review Schema – Review & Structure Data Schema Plugin Food Menu – Restaurant Menu & Online Ordering for WooCommerce Team – Team Members Showcase Plugin Widget for Google Reviews Radius Blocks – WordPress Gutenberg Blocks
CVE IDTitleCVSSSeverityPublished
CVE-2025-7711 Classified Listing – Classified ads & Business Directory Plugin <= 5.0.3 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via Listing Description — Classified Listing – AI-Powered Classified ads & Business Directory PluginCWE-94 5.4 Medium2025-11-17
CVE-2025-12953 Classified Listing – AI-Powered Classified ads & Business Directory Plugin <= 5.2.0 - Missing Authorization to Authenticated (Subscriber+) Listing Types Tampering — Classified Listing – AI-Powered Classified ads & Business Directory PluginCWE-862 4.3 Medium2025-11-11
CVE-2025-5844 Radius Blocks <= 2.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via subHeadingTagName Parameter — Radius Blocks – WordPress Gutenberg BlocksCWE-79 6.4 Medium2025-08-15
CVE-2025-7327 Widget for Google Reviews <= 1.0.15 - Authenticated (Subscriber+) Directory Traversal to Local File Inclusion — Widget for Google ReviewsCWE-98 8.8 High2025-07-08
CVE-2025-1707 Review Schema <= 2.2.4 - Authenticated (Contributor+) Local File Inclusion via Post Meta — Review Schema – Review & Structure Data Schema PluginCWE-98 8.8 High2025-03-11
CVE-2025-1063 Classified Listing – Classified ads & Business Directory Plugin <= 4.0.4 - Unauthenticated Settings Exposure — Classified Listing – AI-Powered Classified ads & Business Directory PluginCWE-200 5.3 Medium2025-02-25
CVE-2024-13439 Team – Team Members Showcase Plugin <= 4.4.9 - Missing Authorization to Authenticated (Subscriber+) Settings Update — Team – Team Members Showcase PluginCWE-862 4.3 Medium2025-02-15
CVE-2024-13415 Food Menu – Restaurant Menu & Online Ordering for WooCommerce <= 5.1.4 - Missing Authorization to Authenticated (Subscriber+) Settings Update — Food Menu – Restaurant Menu & Online Ordering for WooCommerceCWE-862 4.3 Medium2025-01-31
CVE-2024-11194 Classified Listing – Classified ads & Business Directory Plugin <= 3.1.15.1 - Authenticated (Subscriber+) Limited Arbitrary Option Update — Classified Listing – AI-Powered Classified ads & Business Directory PluginCWE-862 8.8 High2024-11-19
CVE-2024-7888 Classified Listing – Classified ads & Business Directory Plugin <= 3.1.7 - Missing Authorization — Classified Listing – AI-Powered Classified ads & Business Directory PluginCWE-862 6.3 Medium2024-09-13
CVE-2024-7418 The Post Grid <= 7.7.11 - Authenticated (Contributor+) Information Disclosure — The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post GridCWE-200 4.3 Medium2024-08-29
CVE-2024-1427 The Post Grid <= 7.7.1 - Authenticated(Contributor+) Stored Cross-Site Scripting via section title tag — The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post GridCWE-79 6.4 Medium2024-07-02
CVE-2024-3936 The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid <= 7.6.1 - Missing Authorization — The Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post GridCWE-862 4.3 Medium2024-05-02
CVE-2024-3893 Classified Listing – Classified ads & Business Directory Plugin <= 3.0.10.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Attachment Deletion — Classified Listing – AI-Powered Classified ads & Business Directory PluginCWE-862 4.3 Medium2024-04-25
CVE-2024-1352 Classified Listing – Classified ads & Business Directory Plugin <= 3.0.4 - Missing Authorization — Classified Listing – AI-Powered Classified ads & Business Directory PluginCWE-862 6.5 Medium2024-04-09
CVE-2024-1315 Classified Listing <= 3.0.4 - Cross-Site Request Forgery to Account Takeover via rtcl_update_user_account — Classified Listing – AI-Powered Classified ads & Business Directory PluginCWE-352 8.8 High2024-04-09
CVE-2024-0836 WordPress Review & Structure Data Schema Plugin – Review Schema <= 2.1.14 - Missing Authorization to Arbitrary Review Update — Review Schema – Review & Structure Data Schema PluginCWE-862 4.3 Medium2024-01-31

This page lists every published CVE security advisory associated with techlabpro1. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.