Meks Smart Author Widget

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:mekshq:meks_smart_author_widget:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

VendorMekshq (81f8bda9-9d6a-50cd-b427-dc7e3a439bbf)
ProductMeks Smart Author Widget (2b5aaaf0-eeb1-5a7a-a8df-d11bc70a1494)
Edition*
Language*
Software edition*
Target softwarewordpress
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/wp-plugins/meks-smart-author-widget purl2cpe 2026-06-01 10:12:58.491541
pkg:github/wpplugins/meks-smart-author-widget purl2cpe 2026-06-01 10:12:58.491543

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-37958 vulnerable 2026-06-03 14:56:07.398242 WordPress Meks Smart Author Widget plugin <= 1.1.4 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Meks Meks Smart Author Widget allows Stored XSS.This issue affects Meks Smart Author Widget: from n/a through 1.1.4.
Published: 2024-07-20T08:11:08.046Z
Updated: 2026-04-28T16:10:03.605Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-25989 vulnerable 2026-06-03 14:50:27.577058 Cross-Site Request Forgery (CSRF) vulnerability in multiple WordPress plugins by Meks
MEDIUM (4.3)
Cross-Site Request Forgery (CSRF) vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading to dismiss or the popup.
Published: 2023-10-03T11:00:33.837Z
Updated: 2026-04-28T16:08:11.292Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.