Source evidence

CVE-2024-37114

My Favorites · support · 2026-01-08T11:14:00+00:00

My Favorites plugin evidence original source source API

mixedsentiment

highseverity

0.88relevance

2replies

Evidence linked to opportunitycommercial context

Proof Health

Open evidence

Commercial opportunities need traceable source links before they are treated as build-worthy.

6 / 31 rows with source links

19.4% of this page's analysis has direct source links.

0 build-decision rows missing links

0 rows here require auditable proof before promotion.

25 rows with no attached evidence

0 rows have source counts but still need direct links.

Conversation

support

kpolljonker resolved

Hiya, Wordfence is notifying me of a vulnerability in the plugin; – are you aware of this vulnerability, and is a patch planned? Hope to hear from you soon. Best regards. Hi @kpolljonker Thank you for reporting this vulnerability. I have released version 1.4.4 on WordPress.org which fixes CVE-2024-37114. Please update to the latest version. Details: https://github.com/takashi-matsuyama/my-favorites/issues/8 Best regards. Thanks for the patch! I’ve installed it on my site.

Commercial Context

Opportunity

accessibility QA and compliance reporting

Accessibility remediation workflow for finding and documenting accessibility risks before visitors or clients do

Buyer: agencies, site owners, and compliance-sensitive organizations

Wedge: prioritize accessibility WCAG failures, theme regressions, and client-ready remediation proof

Proof Blocked card complete market

Analysis

heuristic-v1

Summary: CVE-2024-37114: users show security, bugs, setup pain that may indicate a product gap.

Evidence quote: CVE-2024-37114 Hiya, Wordfence is notifying me of a vulnerability in the plugin; – are you aware of this vulnerability, and is a patch planned?

Affected feature: reporting

security bugs setup quality

Plugin

API

My Favorites

1.0K active installs · 18.8K downloads · rating 100.0

accessibility favorite posts favorites likes

Comments

2 shown

Takashi Matsuyama 2026-01-09T08:36:00+00:00

Hi @kpolljonker Thank you for reporting this vulnerability. I have released version 1.4.4 on WordPress.org which fixes CVE-2024-37114. Please update to the latest version. Details: https://github.com/takashi-matsuyama/my-favorites/issues/8 Best regards.

kpolljonker 2026-01-09T09:31:00+00:00

Thanks for the patch! I’ve installed it on my site.