Browse all 9 CVE security advisories affecting Aman. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Aman primarily develops web applications and APIs for enterprise clients, with a core focus on e-commerce platforms. Historically, vulnerabilities associated with this developer include multiple remote code execution flaws, cross-site scripting (XSS) issues, and privilege escalation weaknesses, often stemming from improper input validation and insecure authentication mechanisms. Security assessments reveal inconsistent patch management and insufficient dependency updates. While no major public breaches have been directly attributed to Aman's code, the consistent pattern of similar vulnerability types across multiple projects suggests systemic security gaps in development practices, requiring improved secure coding training and regular security reviews.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-66067 | WordPress Funnel Builder by FunnelKit plugin <= 3.13.1.2 - Cross Site Scripting (XSS) vulnerability — Funnel Builder by FunnelKitCWE-79 | 6.5 | Medium | 2025-11-21 |
| CVE-2025-54750 | WordPress Funnel Builder by FunnelKit Plugin <= 3.11.1 - Local File Inclusion Vulnerability — Funnel Builder by FunnelKitCWE-98 | 7.5 | High | 2025-08-20 |
| CVE-2025-49034 | WordPress Funnel Builder by FunnelKit plugin <= 3.10.2 - SQL Injection vulnerability — Funnel Builder by FunnelKitCWE-89 | 7.6 | High | 2025-07-16 |
| CVE-2025-26979 | WordPress Funnel Builder by FunnelKit plugin <= 3.9.0 - Local File Inclusion vulnerability — Funnel Builder by FunnelKitCWE-98 | 7.5 | High | 2025-02-25 |
This page lists every published CVE security advisory associated with Aman. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.