Browse all 3 CVE security advisories affecting wpmanageninja. AI-powered Chinese analysis, POCs, and references for each vulnerability.
wpmanageninja is a WordPress management plugin designed to streamline website administration tasks. Historically, it has been associated with multiple critical vulnerabilities, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation issues. These vulnerabilities often stem from insufficient input validation and improper access controls. The plugin currently has three CVEs on record, highlighting ongoing security concerns. While no major public incidents have been widely documented, its vulnerability history suggests potential risks for unpatched installations. Users are advised to maintain updated versions and implement security best practices when using wpmanageninja to mitigate potential exploitation risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-67971 | WordPress FluentCart plugin < 1.3.0 - Cross Site Scripting (XSS) vulnerability — FluentCartCWE-79 | 7.1 | High | 2026-02-20 |
| CVE-2025-13495 | FluentCart A New Era of eCommerce <= 1.3.1 - Authenticated (Administrator+) SQL Injection via 'groupKey' Parameter — FluentCart A New Era of eCommerce – Faster, Lighter, and SimplerCWE-89 | 4.9 | Medium | 2025-12-03 |
| CVE-2023-6953 | PDF Generator For Fluent Forms <= 1.1.7 - Cross-Site Scripting — Fluent PDF GeneratorCWE-79 | 4.9 | Medium | 2024-02-05 |
This page lists every published CVE security advisory associated with wpmanageninja. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.