All 2 CVE vulnerabilities found in NMR Strava activities, with AI-generated Chinese analysis, references, and POCs.
Vendor: mirceatm
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-5341 | NMR Strava activities <= 1.0.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes CWE-79 | 6.4 | Medium | 2026-05-08 |
| CVE-2024-51603 | WordPress NMR Strava activities plugin <= 1.0.7 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2024-11-09 |
All 2 known CVE vulnerabilities affecting NMR Strava activities with full Chinese analysis, references, and POCs where available.