Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

wpdirectorykit.com — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting wpdirectorykit.com. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Wpdirectorykit.com is a WordPress plugin designed to create and manage directory listings, commonly used for business directories or member directories. Historically, the plugin has been vulnerable to multiple security issues including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation vulnerabilities. These vulnerabilities often stem from insufficient input validation and improper access controls. The plugin currently has three CVEs on record, highlighting ongoing security concerns. While no major public incidents have been widely reported, the consistent appearance of critical vulnerabilities in its history suggests potential risks for users who fail to maintain updated versions of the plugin.

Top products by wpdirectorykit.com: WP Directory Kit Real Estate Directory
CVE IDTitleCVSSSeverityPublished
CVE-2023-41875 WordPress WP Directory Kit plugin <= 1.2.6 - Broken Access Control vulnerability — WP Directory KitCWE-862 5.3 Medium2024-12-13
CVE-2023-28532 WordPress Real Estate Directory theme <= 1.0.5 - Authenticated Arbitrary Plugin Activation — Real Estate DirectoryCWE-862 4.3 Medium2024-12-09
CVE-2024-37487 WordPress WP Directory Kit plugin <= 1.3.5 - Reflected Cross Site Scripting (XSS) vulnerability — WP Directory KitCWE-79 7.1 High2024-07-21

This page lists every published CVE security advisory associated with wpdirectorykit.com. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.