Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

vinod-dalvi — Vulnerabilities & Security Advisories 4

Browse all 4 CVE security advisories affecting vinod-dalvi. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Vinod-Dalvi develops WordPress plugins and themes, primarily serving content management and website customization needs. Historically, their vulnerabilities have frequently included cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, often stemming from insufficient input validation and improper access controls. Security assessments have revealed consistent patterns of insecure coding practices, with multiple CVEs highlighting sanitization bypasses and authentication weaknesses. While no major public security incidents have been documented, the accumulation of four CVEs indicates persistent security challenges in their codebase, requiring rigorous testing and secure development protocols to mitigate risks.

Top products by vinod-dalvi: Ivory Search – WordPress Search Plugin Login Logout Register Menu
CVE IDTitleCVSSSeverityPublished
CVE-2026-1053 Ivory Search <= 5.5.13 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'menu_gcse' and 'nothing_found_text' Parameters — Ivory Search – WordPress Search PluginCWE-79 4.4 Medium2026-01-28
CVE-2024-6835 Ivory Search – WordPress Search Plugin <= 5.5.6 - Information Exposure via AJAX Search Form — Ivory Search – WordPress Search PluginCWE-200 5.3 Medium2024-09-05
CVE-2024-3726 Login Logout Register Menu <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'llrmloginlogout' Shortcode — Login Logout Register MenuCWE-79 6.4 Medium2024-05-30
CVE-2024-3233 Ivory Search – WordPress Search Plugin <= 5.5.5 - Missing Authorization to Authenticated (Subscriber+) Index Creation — Ivory Search – WordPress Search PluginCWE-862 4.3 Medium2024-05-02

This page lists every published CVE security advisory associated with vinod-dalvi. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.