Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Arraytics — Vulnerabilities & Security Advisories 38

Browse all 38 CVE security advisories affecting Arraytics. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Arraytics operates as a specialized provider of advanced threat detection and response solutions, primarily targeting industrial control systems and critical infrastructure environments. With thirty-eight Common Vulnerabilities and Exposures (CVEs) currently on record, the platform has historically exhibited significant security weaknesses, particularly in the areas of remote code execution and cross-site scripting. These flaws often stem from insufficient input validation and improper access controls, allowing attackers to escalate privileges or execute arbitrary commands within the managed network. While specific major public breaches remain limited in detailed reporting, the high volume of disclosed vulnerabilities indicates systemic issues in the software development lifecycle. The presence of these defects poses substantial risks to operational technology environments, where successful exploitation could lead to severe disruptions in industrial processes. Continuous patching and rigorous security audits are essential to mitigate these persistent exposure points.

Top products by Arraytics: Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) Eventin Timetics Timetics – Appointment Booking & Scheduling WPCafe WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System Booktics – Booking Calendar for Appointments and Service Businesses Booktics
CVE IDTitleCVSSSeverityPublished
CVE-2024-9263 WP Timetics- AI-powered Appointment Booking Calendar and Online Scheduling Plugin <= 1.0.25 - Insecure Direct Object Reference to Unauthenticated Arbitrary User Password/Email Reset/Account Takeover — Timetics – Appointment Booking & SchedulingCWE-639 9.8 Critical2024-10-17
CVE-2024-7149 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.8 - Authenticated (Contributor+) Local File Inclusion — Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered)CWE-22 8.8 High2024-09-27
CVE-2024-6033 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.4 - Missing Authorization to Authenticated (Contributor+) Event Data Import — Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered)CWE-862 4.3 Medium2024-07-17
CVE-2024-5431 WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce <= 2.2.25 - Authenticated (Contributor+) File inclusion via Shortcode — WPCafe – Restaurant Menu, Online Food Ordering & Table Booking SystemCWE-98 8.8 High2024-06-25
CVE-2024-1094 Timetics- AI-powered Appointment Booking with Visual Seat Plan and ultimate Calendar Scheduling Plugin <= 1.0.21 - Missing Authorization to Limited Privilege Escalation — Timetics – Appointment Booking & SchedulingCWE-862 7.3 High2024-06-14
CVE-2024-5427 WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce <= 2.2.24 - Authenticated (Contributor+) Stored Cross-Site Scripting via Reservation Form Shortcode — WPCafe – Restaurant Menu, Online Food Ordering & Table Booking SystemCWE-79 6.4 Medium2024-05-31
CVE-2024-1855 WPCafe <= 2.2.23 - Unauthenticated Blind Server-Side Request Forgery — WPCafe – Restaurant Menu, Online Food Ordering & Table Booking SystemCWE-918 5.3 Medium2024-05-23
CVE-2024-1122 Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin <= 3.3.50 - Missing Authorization to Unauthenticated Events Export — Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered)CWE-862 5.3 Medium2024-02-09

This page lists every published CVE security advisory associated with Arraytics. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.