Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Jupiter X Core — Vulnerabilities & Security Advisories 13

All 13 CVE vulnerabilities found in Jupiter X Core, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of security vulnerabilities associated with the Jupiter X Core product, categorized under general software weakness types and tracked by the vendor responsible for its development. It collects data on a wide array of security flaws, including remote code execution, cross-site scripting, and authentication bypass issues that have been publicly disclosed or identified by security researchers. The coverage includes vulnerability reports spanning from the initial release of the software through recent updates, ensuring that both legacy and current security concerns are documented for historical analysis and immediate risk assessment. By accessing this centralized resource, users can effectively track the vendor's security advisories over time to stay informed about patch availability and remediation steps. Furthermore, it allows stakeholders to understand the prevalence and impact of specific weakness classes within the Jupiter X Core ecosystem, facilitating deeper analysis of systemic design or implementation flaws. Visitors can also look up a product's vulnerability history to evaluate the overall security posture and response patterns of the development team. This aggregation serves as a critical tool for developers, security analysts, and system administrators who need to make informed decisions regarding deployment, configuration, and maintenance of the Jupiter X Core environment. The data is structured to support thorough investigation into how specific vulnerabilities have been exploited or mitigated in real-world scenarios.

Vendor: ArtBees

CVE IDTitleCVSSSeverityPublished
CVE-2026-3533 JupiterX Core <= 4.14.1 - Authenticated (Subscriber+) Missing Authorization To Limited File Upload via Popup Template Import CWE-434 8.8 High2026-03-23
CVE-2025-3888 Jupiterx Core <= 4.8.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Inline SVG CWE-79 6.4 Medium2025-05-17
CVE-2025-2105 Jupiter X Core <= 4.8.11 - Unauthenticated PHP Object Injection via PHAR CWE-502 8.1 High2025-04-26
CVE-2025-0365 Jupiterx Core <= 4.8.7 - Authenticated (Contributor+) Arbitrary File Read CWE-22 6.5 Medium2025-02-01
CVE-2025-0366 Jupiter X Core <= 4.8.7 - Authenticated (Contributor+) SVG Upload to Local File Inclusion (Remote Code Execution) CWE-98 8.8 High2025-02-01
CVE-2024-12316 Jupiter X Core <= 4.8.5 - Missing Authorization to Unauthenticated Popup Template Export CWE-862 5.3 Medium2025-01-07
CVE-2024-12033 Jupiter X Core <= 4.8.5 - Missing Authorization to Authenticated Library Sync CWE-862 4.3 Medium2025-01-07
CVE-2024-7781 Jupiter X Core <= 4.7.5 - Limited Unauthenticated Authentication Bypass to Account Takeover CWE-288 8.1 High2024-09-26
CVE-2024-7772 Jupiter X Core <= 4.6.5 - Unauthenticated Arbitrary File Upload CWE-434 9.8 Critical2024-09-26
CVE-2023-3813 Jupiter X Core <= 4.6.6 - Unauthenticated Arbitrary File Download CWE-22 7.5 High2023-07-21
CVE-2022-1659 JupiterX Core <= 2.0.6 - Information Disclosure, Modification, and Denial of Service CWE-284 5.4 Medium2022-06-13
CVE-2022-1654 Jupiter Theme <= 6.10.1 and JupiterX Core Plugin <= 2.0.7 - Authenticated Privilege Escalation CWE-269 8.8 High2022-06-13
CVE-2022-1656 JupiterX Theme <= 2.0.6 and JupiterX Core <= 2.0.6 - Authenticated Arbitrary Plugin Deactivation and Settings Modification CWE-284 5.4 Medium2022-06-13

All 13 known CVE vulnerabilities affecting Jupiter X Core with full Chinese analysis, references, and POCs where available.