Browse all 3 CVE security advisories affecting wpwhitesecurity. AI-powered Chinese analysis, POCs, and references for each vulnerability.
wpwhitesecurity develops WordPress security plugins focused on vulnerability detection and protection. Historically, their products have addressed common web vulnerabilities including remote code execution (RCE), cross-site scripting (XSS), privilege escalation, and SQL injection. The company maintains a moderate CVE count with three records to date, primarily involving stored XSS and insufficient input validation in their premium security features. While no major public security incidents have been documented, their vulnerability history suggests a pattern of input validation issues that have been promptly addressed through updates. Their core value proposition centers on automated WordPress hardening and threat detection for small to medium-sized websites.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-2018 | WP Activity Log Premium <= 4.6.4 - Authenticated (Subscriber+) SQL Injection — WP Activity Log PremiumCWE-89 | 8.8 | High | 2024-04-09 |
| CVE-2023-2285 | WP Activity Log Premium <= 4.5.0 - Cross-Site Request Forgery via ajax_switch_db — WP Activity Log PremiumCWE-352 | 4.3 | Medium | 2023-06-09 |
| CVE-2023-2284 | WP Activity Log Premium <= 4.5.0 - Missing Authorization via ajax_switch_db — WP Activity Log PremiumCWE-862 | 4.3 | Medium | 2023-06-09 |
This page lists every published CVE security advisory associated with wpwhitesecurity. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.