GCVE - cpe:2.3:a:ays_pro:chartify:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:ays_pro:chartify:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Ays Pro (`baec0466-3d3a-5cae-863d-5da547e565f4`)
Product	Chartify (`89366f23-63ca-5908-8e61-6f1d10c455f0`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-66529`	vulnerable	2026-06-03 15:11:00.752001	WordPress Chartify plugin <= 3.6.3 - Cross Site Request Forgery (CSRF) vulnerability MEDIUM (4.3) Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Chartify chart-builder allows Cross Site Request Forgery.This issue affects Chartify: from n/a through <= 3.6.3. Published: 2025-12-09T14:13:53.647Z Updated: 2026-04-28T16:14:19.249Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/chart-builder/vulnerability/wordpress-chartify-plugin-3-6-3-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-54673`	vulnerable	2026-06-03 15:04:56.510673	WordPress Chartify plugin <= 3.5.3 - Cross Site Request Forgery (CSRF) vulnerability MEDIUM (4.3) Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Chartify chart-builder allows Cross Site Request Forgery.This issue affects Chartify: from n/a through <= 3.5.3. Published: 2025-08-14T10:34:40.829Z Updated: 2026-04-28T16:13:33.976Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/chart-builder/vulnerability/wordpress-chartify-plugin-plugin-3-5-3-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-30904`	vulnerable	2026-06-03 15:00:29.811924	WordPress Chartify plugin <= 3.1.7 - Cross Site Scripting (XSS) vulnerability MEDIUM (5.9) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ays Pro Chartify chart-builder allows Stored XSS.This issue affects Chartify: from n/a through <= 3.1.7. Published: 2025-03-27T10:55:51.642Z Updated: 2026-04-28T16:12:00.288Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/chart-builder/vulnerability/wordpress-chartify-plugin-3-1-7-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-47347`	vulnerable	2026-06-03 14:57:01.077322	WordPress Chartify plugin <= 2.7.6 - Reflected Cross Site Scripting (XSS) vulnerability HIGH (7.1) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ays Pro Chartify chart-builder allows Reflected XSS.This issue affects Chartify: from n/a through <= 2.7.6. Published: 2024-10-06T10:29:32.119Z Updated: 2026-04-28T16:10:19.117Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/chart-builder/vulnerability/wordpress-chartify-plugin-2-7-6-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.