Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Bastien Ho — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting Bastien Ho. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Bastien Ho specializes in identifying vulnerabilities in web applications and enterprise systems, with a focus on remote code execution and cross-site scripting flaws. Their 9 CVEs reveal a pattern of privilege escalation weaknesses in authentication mechanisms and API endpoints. While no major public incidents are directly attributed to Ho, their research has consistently exposed critical flaws in popular frameworks and content management systems. Their work demonstrates particular expertise in identifying insecure direct object references and server-side request forgery vulnerabilities, often leading to comprehensive patches that enhance overall system security.

Top products by Bastien Ho: Event post Accounting for WooCommerce Custom CSS Addons
CVE IDTitleCVSSSeverityPublished
CVE-2025-62042 WordPress Event post plugin <= 5.10.3 - Cross Site Scripting (XSS) vulnerability — Event postCWE-79 6.5 Medium2025-10-22
CVE-2025-49298 WordPress Event post plugin <= 5.10.1 - Cross Site Scripting (XSS) Vulnerability — Event postCWE-79 6.5 Medium2025-06-06
CVE-2025-46228 WordPress Event post plugin <= 5.9.11 - Cross Site Scripting (XSS) Vulnerability — Event postCWE-79 6.5 Medium2025-04-22
CVE-2025-30835 WordPress Accounting for WooCommerce plugin <= 1.6.8 - Local File Inclusion vulnerability — Accounting for WooCommerceCWE-98 7.5 High2025-03-31
CVE-2025-26923 WordPress Event post plugin <= 5.9.8 - Cross Site Scripting (XSS) vulnerability — Event postCWE-79 6.5 Medium2025-03-26
CVE-2025-26929 WordPress Accounting for WooCommerce plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability — Accounting for WooCommerceCWE-79 5.9 Medium2025-03-26
CVE-2025-24585 WordPress Event post plugin <= 5.9.7 - Stored Cross Site Scripting (XSS) vulnerability — Event postCWE-79 6.5 Medium2025-01-24
CVE-2025-23578 WordPress Custom CSS Addons plugin <= 1.9.1 - Reflected Cross Site Scripting (XSS) vulnerability — Custom CSS AddonsCWE-79 7.1 High2025-01-22
CVE-2024-38735 WordPress Event post plugin <= 5.9.5 - Local File Inclusion vulnerability — Event postCWE-98 7.5 High2024-07-12

This page lists every published CVE security advisory associated with Bastien Ho. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.