Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Arcadia Technology, LLC — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting Arcadia Technology, LLC. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Arcadia Technology, LLC develops enterprise software solutions for supply chain management, with its products primarily used by logistics and distribution companies. Historically, their applications have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and authentication flaws. While no major public security incidents have been documented, the seven CVEs attributed to their products highlight recurring issues in access control and secure coding practices. Their security posture reflects common challenges in enterprise software development, where functionality is prioritized over robust security measures, leading to preventable vulnerabilities that could compromise sensitive supply chain data.

Top products by Arcadia Technology, LLC: Crafty Controller
CVE IDTitleCVSSSeverityPublished
CVE-2026-5652 Authorization Bypass Through User-Controlled Key in Crafty Controller — Crafty ControllerCWE-639 9.0 Critical2026-04-21
CVE-2026-0805 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller — Crafty ControllerCWE-22 8.2 High2026-01-30
CVE-2026-0963 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller — Crafty ControllerCWE-22 9.9 Critical2026-01-30
CVE-2025-14700 Improper Neutralization of Special Elements Used in a Template Engine in Crafty Controller — Crafty ControllerCWE-1336 9.9 Critical2025-12-17
CVE-2025-14701 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Crafty Controller — Crafty ControllerCWE-79 7.1 High2025-12-17
CVE-2025-5990 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Crafty Controller — Crafty ControllerCWE-79 7.6 High2025-06-15
CVE-2024-1064 Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4 — Crafty ControllerCWE-644 7.5 High2024-02-03

This page lists every published CVE security advisory associated with Arcadia Technology, LLC. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.