Browse all 4 CVE security advisories affecting wpshopmart. AI-powered Chinese analysis, POCs, and references for each vulnerability.
wpshopmart is an e-commerce platform for WordPress that enables online store creation and management. Historically, it has been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. The platform has accumulated four CVEs, reflecting persistent security challenges in its core functionality. These vulnerabilities often stem from insufficient input validation and improper access controls, potentially allowing attackers to compromise store systems, steal customer data, or gain unauthorized administrative access. Security researchers have identified consistent patterns in vulnerability types, suggesting systemic issues in the platform's security architecture that require comprehensive remediation efforts.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-1136 | Coming Soon Page & Maintenance Mode <= 2.2.1 - Maintenance Mode Bypass — Coming Soon Page & Maintenance ModeCWE-862 | 5.3 | Medium | 2024-02-28 |
| CVE-2019-25140 | Coming Soon Page & Maintenance Mode <= 1.8.1 - Stored Cross Site Scripting — Coming Soon Page & Maintenance ModeCWE-79 | 7.2 | High | 2023-06-07 |
| CVE-2019-25139 | Coming Soon Page & Maintenance Mode <= 1.8.1 - Unauthenticated Settings Reset — Coming Soon Page & Maintenance ModeCWE-862 | 6.5 | Medium | 2023-06-07 |
| CVE-2021-36857 | WordPress Testimonial Builder plugin <= 1.6.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — Testimonial (WordPress plugin)CWE-79 | 4.8 | Medium | 2022-08-22 |
This page lists every published CVE security advisory associated with wpshopmart. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.