Browse all 9 CVE security advisories affecting Aman. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Aman primarily develops web applications and APIs for enterprise clients, with a core focus on e-commerce platforms. Historically, vulnerabilities associated with this developer include multiple remote code execution flaws, cross-site scripting (XSS) issues, and privilege escalation weaknesses, often stemming from improper input validation and insecure authentication mechanisms. Security assessments reveal inconsistent patch management and insufficient dependency updates. While no major public breaches have been directly attributed to Aman's code, the consistent pattern of similar vulnerability types across multiple projects suggests systemic security gaps in development practices, requiring improved secure coding training and regular security reviews.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49868 | WordPress Automation By Autonami plugin <= 3.6.0 - Open Redirection Vulnerability — FunnelKit AutomationsCWE-601 | 4.7 | Medium | 2025-06-17 |
| CVE-2025-30795 | WordPress Automation By Autonami plugin <= 3.5.1 - Open Redirection vulnerability — FunnelKit AutomationsCWE-601 | 4.7 | Medium | 2025-03-27 |
| CVE-2024-47328 | WordPress Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit plugin <= 3.1.2 - SQL Injection vulnerability — FunnelKit AutomationsCWE-89 | 7.6 | High | 2024-10-21 |
This page lists every published CVE security advisory associated with Aman. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.