Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Aman — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting Aman. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Aman primarily develops web applications and APIs for enterprise clients, with a core focus on e-commerce platforms. Historically, vulnerabilities associated with this developer include multiple remote code execution flaws, cross-site scripting (XSS) issues, and privilege escalation weaknesses, often stemming from improper input validation and insecure authentication mechanisms. Security assessments reveal inconsistent patch management and insufficient dependency updates. While no major public breaches have been directly attributed to Aman's code, the consistent pattern of similar vulnerability types across multiple projects suggests systemic security gaps in development practices, requiring improved secure coding training and regular security reviews.

Top products by Aman: Funnel Builder by FunnelKit FunnelKit Automations Popup addon for Ninja Forms
CVE IDTitleCVSSSeverityPublished
CVE-2025-66067 WordPress Funnel Builder by FunnelKit plugin <= 3.13.1.2 - Cross Site Scripting (XSS) vulnerability — Funnel Builder by FunnelKitCWE-79 6.5 Medium2025-11-21
CVE-2025-64264 WordPress Popup addon for Ninja Forms plugin <= 3.5.1 - Cross Site Scripting (XSS) vulnerability — Popup addon for Ninja FormsCWE-79 5.9 Medium2025-11-13
CVE-2025-54750 WordPress Funnel Builder by FunnelKit Plugin <= 3.11.1 - Local File Inclusion Vulnerability — Funnel Builder by FunnelKitCWE-98 7.5 High2025-08-20
CVE-2025-49034 WordPress Funnel Builder by FunnelKit plugin <= 3.10.2 - SQL Injection vulnerability — Funnel Builder by FunnelKitCWE-89 7.6 High2025-07-16
CVE-2025-53279 WordPress Popup addon for Ninja Forms plugin <= 3.4 - Cross Site Scripting (XSS) Vulnerability — Popup addon for Ninja FormsCWE-79 6.5 Medium2025-06-27
CVE-2025-49868 WordPress Automation By Autonami plugin <= 3.6.0 - Open Redirection Vulnerability — FunnelKit AutomationsCWE-601 4.7 Medium2025-06-17
CVE-2025-30795 WordPress Automation By Autonami plugin <= 3.5.1 - Open Redirection vulnerability — FunnelKit AutomationsCWE-601 4.7 Medium2025-03-27
CVE-2025-26979 WordPress Funnel Builder by FunnelKit plugin <= 3.9.0 - Local File Inclusion vulnerability — Funnel Builder by FunnelKitCWE-98 7.5 High2025-02-25
CVE-2024-47328 WordPress Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit plugin <= 3.1.2 - SQL Injection vulnerability — FunnelKit AutomationsCWE-89 7.6 High2024-10-21

This page lists every published CVE security advisory associated with Aman. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.