Browse all 10 CVE security advisories affecting wpshuffle. AI-powered Chinese analysis, POCs, and references for each vulnerability.
wpshuffle is a WordPress plugin designed to shuffle post content for content variation purposes. Historically, it has been vulnerable to multiple security issues, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation vulnerabilities. These flaws often stem from insufficient input validation and improper access controls. The plugin has accumulated 10 CVEs, indicating a pattern of security weaknesses. While no major public incidents have been widely documented, the consistent discovery of vulnerabilities suggests potential risks for unpatched installations. Users are advised to maintain updated versions and implement additional security measures to mitigate potential exploitation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-60166 | WordPress WP Subscription Forms PRO Plugin <= 2.0.5 - Arbitrary Content Deletion Vulnerability — WP Subscription Forms PROCWE-862 | 4.3 | Medium | 2025-09-26 |
This page lists every published CVE security advisory associated with wpshuffle. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.