GCVE - cpe:2.3:a:pickplugins:question_answer:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:pickplugins:question_answer:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Pickplugins (`03c448d6-40a7-5ce8-8d7e-bbbe6a0aa644`)
Product	Question Answer (`9853f075-8df1-5657-b563-3d01ac7c4572`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-32647`	vulnerable	2026-06-03 15:00:41.586300	WordPress Question Answer plugin <= 1.2.73 - PHP Object Injection vulnerability HIGH (8.8) Deserialization of Untrusted Data vulnerability in PickPlugins Question Answer question-answer allows Object Injection.This issue affects Question Answer: from n/a through <= 1.2.73. Published: 2025-04-17T15:47:07.113Z Updated: 2026-04-28T16:12:26.890Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/question-answer/vulnerability/wordpress-question-answer-plugin-1-2-70-php-object-injection-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-32646`	vulnerable	2026-06-03 15:00:41.585865	WordPress Question Answer plugin <= 1.2.70 - Reflected Cross Site Scripting (XSS) vulnerability HIGH (7.1) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Question Answer question-answer allows Reflected XSS.This issue affects Question Answer: from n/a through <= 1.2.70. Published: 2025-04-17T15:47:07.717Z Updated: 2026-04-28T16:12:26.436Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/question-answer/vulnerability/wordpress-question-answer-plugin-1-2-70-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-31810`	vulnerable	2026-06-03 15:00:39.373180	WordPress Question Answer plugin <= 1.2.73 - Broken Access Control vulnerability MEDIUM (5.3) Missing Authorization vulnerability in PickPlugins Question Answer question-answer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Question Answer: from n/a through <= 1.2.73. Published: 2025-04-01T14:51:39.860Z Updated: 2026-04-28T16:12:13.328Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/question-answer/vulnerability/wordpress-question-answer-plugin-1-2-70-broken-access-control-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.