GCVE - cpe:2.3:a:oxilab:shortcode_addons:*:*:*:*:*:wordpress:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:oxilab:shortcode_addons:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

Vendor	Oxilab (`625ac1bf-21af-5e5d-be4d-6e894fb48ca6`)
Product	Shortcode Addons (`5d7ec261-6f79-5d27-8d71-a110792da601`)
Edition	*
Language	*
Software edition	*
Target software	wordpress
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-37121`	vulnerable	2026-06-08 06:39:46.645293	WordPress Shortcode Addons plugin <= 3.2.5 - Cross Site Scripting (XSS) vulnerability MEDIUM (5.9) Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in biplob018 Shortcode Addons allows Stored XSS.This issue affects Shortcode Addons: from n/a through 3.2.5. Published: 2024-07-22T09:35:33.188Z Updated: 2026-04-28T16:09:56.457Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/shortcode-addons/wordpress-shortcode-addons-plugin-3-2-5-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-31114`	vulnerable	2026-06-08 06:35:30.968412	WordPress Shortcode Addons <= 3.2.5 - Arbitrary File Upload vulnerability CRITICAL (9.1) Unrestricted Upload of File with Dangerous Type vulnerability in biplob018 Shortcode Addons.This issue affects Shortcode Addons: from n/a through 3.2.5. Published: 2024-03-31T18:07:16.586Z Updated: 2026-04-28T16:09:28.284Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/shortcode-addons/wordpress-shortcode-addons-3-2-5-arbitrary-file-upload-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-34487`	vulnerable	2026-06-08 05:44:53.610352	WordPress Shortcode Addons plugin <= 3.0.2 - Unauthenticated Arbitrary Option Update vulnerability CRITICAL (9.8) Unauthenticated Arbitrary Option Update vulnerability in biplob018's Shortcode Addons plugin <= 3.0.2 at WordPress. Published: 2022-07-21T17:27:58.708Z Updated: 2026-04-28T16:07:44.430Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/shortcode-addons/#developers https://patchstack.com/database/vulnerability/shortcode-addons/wordpress-shortcode-addons-plugin-3-0-3-unauthenticated-arbitrary-option-update-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-33970`	vulnerable	2026-06-08 05:44:51.912802	WordPress Shortcode Addons plugin <= 3.1.2 - Authenticated WordPress Options Change vulnerability HIGH (7.2) Authenticated WordPress Options Change vulnerability in Biplob018 Shortcode Addons plugin <= 3.1.2 at WordPress. Published: 2022-07-27T13:28:14.480Z Updated: 2026-04-28T16:07:44.123Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/shortcode-addons/#developers https://patchstack.com/database/vulnerability/shortcode-addons/wordpress-shortcode-addons-plugin-3-1-2-authenticated-wordpress-options-change-vulnerability	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.