Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

wpwham — Vulnerabilities & Security Advisories 4

Browse all 4 CVE security advisories affecting wpwham. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Wpwham is a WordPress plugin designed to enhance website functionality through various features. Historically, it has been associated with multiple critical vulnerabilities, including remote code execution, cross-site scripting, and privilege escalation, as evidenced by its four CVE records. The plugin's security posture has been compromised through insufficient input validation and improper access controls, allowing attackers to execute unauthorized commands or compromise user accounts. While no major public incidents have been widely documented, its vulnerability history indicates consistent security weaknesses that could lead to complete website compromise. Administrators should maintain strict version control and apply security patches promptly to mitigate risks associated with this plugin.

Top products by wpwham: Currency Switcher for WooCommerce SKU Generator for WooCommerce Crowdfunding for WooCommerce Checkout Files Upload for WooCommerce
CVE IDTitleCVSSSeverityPublished
CVE-2025-4212 Checkout Files Upload for WooCommerce <= 2.2.1 - Unauthenticated Stored Cross-Site Scripting — Checkout Files Upload for WooCommerceCWE-79 7.2 High2025-11-18
CVE-2025-5767 Crowdfunding for WooCommerce <= 3.1.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter — Crowdfunding for WooCommerceCWE-79 6.4 Medium2025-07-18
CVE-2024-9212 SKU Generator for WooCommerce <= 1.6.2 - Reflected Cross-Site Scripting — SKU Generator for WooCommerceCWE-79 6.1 Medium2025-03-01
CVE-2024-9217 Currency Switcher for WooCommerce <= 2.16.2 - Reflected Cross-Site Scripting — Currency Switcher for WooCommerceCWE-79 6.1 Medium2025-03-01

This page lists every published CVE security advisory associated with wpwham. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.