AI-Powered CVE Analysis for WordPress Plugins
We use AI to automate the differential analysis between vulnerable and patched plugin versions to understand and interpret the security issues. What we share here is research-grade proof of concept demonstrations that are then fed back into our endpoint firewall service.
WordPress Proof of Concepts
AI-assisted vulnerability analysis with PoC demonstration
2026-01-22
CVE-2025-15522: Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin <= 6.10.0.2 – Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode (uncanny-automator)
The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the automator_discord_user_mapping shortcode in all versions up to, and including, 6.10.0.2 due to insufficient input sanitization and output escaping on the verified_message parameter. This makes it possible for authenticated attackers, with Contributor-level access…
2026-01-22
CVE-2026-0927: KiviCare – Clinic & Patient Management System (EHR) <= 3.6.15 – Missing Authorization to Unauthenticated Limited Arbitrary File Upload (kivicare-clinic-management-system)
The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to arbitrary file uploads due to missing authorization checks in the uploadMedicalReport() function in all versions up to, and including, 3.6.15. This makes it possible for unauthenticated attackers to upload text files and PDF documents to the affected site's server which…
2026-01-22
CVE-2026-24553: Fraud Prevention For Woocommerce <= 2.3.2 – Authenticated (Subscriber+) Information Exposure (woo-blocker-lite-prevent-fake-orders-and-blacklist-fraud-customers)
The Fraud Prevention For WooCommerce and EDD plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to extract sensitive user or configuration data.
2026-01-22
CVE-2026-24560: Cloudinary <= 3.3.0 – Missing Authorization (cloudinary-image-management-and-manipulation-in-the-cloud-cdn)
The Cloudinary plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 3.3.0. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform an unauthorized action.
2026-01-22
CVE-2026-24559: Integration for Contact Form 7 HubSpot <= 1.4.3 – Authenticated (Subscriber+) Information Exposure (cf7-hubspot)
The Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to extract sensitive user or configuration data.
2026-01-22
CVE-2025-14069: Schema & Structured Data for WP & AMP <= 1.54 – Authenticated (Contributor+) Stored Cross-Site Scripting via User Custom Schema (schema-and-structured-data-for-wp)
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'saswp_custom_schema_field' profile field in all versions up to, and including, 1.54 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web…
2026-01-22
CVE-2024-11976: BuddyPress <= 14.3.3 – Unauthenticated Arbitrary Shortcode Execution (buddypress)
The The BuddyPress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 14.3.3. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
2026-01-22
CVE-2026-24557: Contact Form 7 GetResponse Extension <= 1.0.8 – Unauthenticated Information Exposure (contact-form-7-getresponse-extension)
The Contact Form 7 GetResponse Extension plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.8. This makes it possible for unauthenticated attackers to extract sensitive user or configuration data.
2026-01-22
CVE-2026-24562: Ryviu – Product Reviews for WooCommerce <= 3.1.26 – Missing Authorization (ryviu)
The Ryviu – Product Reviews for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 3.1.26. This makes it possible for unauthenticated attackers to perform an unauthorized action.
2026-01-22
CVE-2026-24556: ElementCamp <= 2.3.2 – Missing Authorization (element-camp)
The ElementCamp plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 2.3.2. This makes it possible for unauthenticated attackers to perform an unauthorized action.
How Atomic Edge Works
Simple Setup. Powerful Security.
Atomic Edge acts as a security layer between your website & the internet — inspecting, filtering, and blocking malicious traffic before it ever reaches
your application.