Browse all 15 CVE security advisories affecting wpkube. AI-powered Chinese analysis, POCs, and references for each vulnerability.
WPKube is a WordPress resource hub providing tutorials, plugins, and themes to enhance website functionality. Historically, its offerings have been associated with multiple security vulnerabilities, including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws. The platform has recorded 15 CVEs, with several critical issues allowing attackers to bypass security controls, execute arbitrary code, or gain unauthorized administrative access. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities in its extensions suggests potential risks for users implementing these resources without proper hardening or regular updates.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-4144 | Simple Basic Contact Form <= 20240502 - Unauthenticated Arbitrary Shortcode Execution — Simple Basic Contact FormCWE-94 | 6.5 | Medium | 2024-05-14 |
| CVE-2024-4150 | Simple Basic Contact Form <= 20221201 - Reflected Cross-Site Scripting — Simple Basic Contact FormCWE-79 | 6.1 | Medium | 2024-05-09 |
This page lists every published CVE security advisory associated with wpkube. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.